Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-36953 (GCVE-0-2024-36953)
Vulnerability from cvelistv5
Published
2024-05-30 15:35
Modified
2025-05-04 09:12
Severity ?
VLAI Severity ?
EPSS score ?
Summary
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()
vgic_v2_parse_attr() is responsible for finding the vCPU that matches
the user-provided CPUID, which (of course) may not be valid. If the ID
is invalid, kvm_get_vcpu_by_id() returns NULL, which isn't handled
gracefully.
Similar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()
actually returns something and fail the ioctl if not.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| ► | Linux | Linux |
Version: 7d450e2821710718fd6703e9c486249cee913bab Version: 7d450e2821710718fd6703e9c486249cee913bab Version: 7d450e2821710718fd6703e9c486249cee913bab Version: 7d450e2821710718fd6703e9c486249cee913bab Version: 7d450e2821710718fd6703e9c486249cee913bab Version: 7d450e2821710718fd6703e9c486249cee913bab |
|
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-36953",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-31T18:25:29.061156Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-04T18:46:17.103Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T03:43:50.563Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"arch/arm64/kvm/vgic/vgic-kvm-device.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "4404465a1bee3607ad90a4c5f9e16dfd75b85728",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
},
{
"lessThan": "17db92da8be5dd3bf63c01f4109fe47db64fc66f",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
},
{
"lessThan": "3a5b0378ac6776c7c31b18e0f3c1389bd6005e80",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
},
{
"lessThan": "8d6a1c8e3de36cb0f5e866f1a582b00939e23104",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
},
{
"lessThan": "01981276d64e542c177b243f7c979fee855d5487",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
},
{
"lessThan": "6ddb4f372fc63210034b903d96ebbeb3c7195adb",
"status": "affected",
"version": "7d450e2821710718fd6703e9c486249cee913bab",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"arch/arm64/kvm/vgic/vgic-kvm-device.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "4.7"
},
{
"lessThan": "4.7",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"version": "5.10.217",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.159",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.91",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.31",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"version": "6.8.10",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.10.217",
"versionStartIncluding": "4.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.159",
"versionStartIncluding": "4.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.91",
"versionStartIncluding": "4.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.31",
"versionStartIncluding": "4.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.8.10",
"versionStartIncluding": "4.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.9",
"versionStartIncluding": "4.7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not."
}
],
"providerMetadata": {
"dateUpdated": "2025-05-04T09:12:43.875Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728"
},
{
"url": "https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f"
},
{
"url": "https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80"
},
{
"url": "https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104"
},
{
"url": "https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487"
},
{
"url": "https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb"
}
],
"title": "KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2024-36953",
"datePublished": "2024-05-30T15:35:48.070Z",
"dateReserved": "2024-05-30T15:25:07.080Z",
"dateUpdated": "2025-05-04T09:12:43.875Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-36953\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-05-30T16:15:18.233\",\"lastModified\":\"2024-11-21T09:22:53.767\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\\n\\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\\nthe user-provided CPUID, which (of course) may not be valid. If the ID\\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\\ngracefully.\\n\\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\\nactually returns something and fail the ioctl if not.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: KVM: arm64: vgic-v2: Verifique vCPU que no sea NULL en vgic_v2_parse_attr() vgic_v2_parse_attr() es responsable de encontrar la vCPU que coincida con el CPUID proporcionado por el usuario, que (de curso) puede no ser v\u00e1lido. Si el ID no es v\u00e1lido, kvm_get_vcpu_by_id() devuelve NULL, que no se maneja correctamente. De manera similar al flujo de uaccess de GICv3, verifique que kvm_get_vcpu_by_id() realmente devuelva algo y falle el ioctl si no.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":3.6}]},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T03:43:50.563Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.4, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36953\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-31T18:25:29.061156Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-31T18:25:33.571Z\"}}], \"cna\": {\"title\": \"KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"4404465a1bee\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"17db92da8be5\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"3a5b0378ac67\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"8d6a1c8e3de3\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"01981276d64e\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"7d450e282171\", \"lessThan\": \"6ddb4f372fc6\", \"versionType\": \"git\"}], \"programFiles\": [\"arch/arm64/kvm/vgic/vgic-kvm-device.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"4.7\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.10.217\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.159\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.91\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.31\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.8.10\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.8.*\"}, {\"status\": \"unaffected\", \"version\": \"6.9\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"arch/arm64/kvm/vgic/vgic-kvm-device.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/4404465a1bee3607ad90a4c5f9e16dfd75b85728\"}, {\"url\": \"https://git.kernel.org/stable/c/17db92da8be5dd3bf63c01f4109fe47db64fc66f\"}, {\"url\": \"https://git.kernel.org/stable/c/3a5b0378ac6776c7c31b18e0f3c1389bd6005e80\"}, {\"url\": \"https://git.kernel.org/stable/c/8d6a1c8e3de36cb0f5e866f1a582b00939e23104\"}, {\"url\": \"https://git.kernel.org/stable/c/01981276d64e542c177b243f7c979fee855d5487\"}, {\"url\": \"https://git.kernel.org/stable/c/6ddb4f372fc63210034b903d96ebbeb3c7195adb\"}], \"x_generator\": {\"engine\": \"bippy-9e1c9544281a\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\\n\\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\\nthe user-provided CPUID, which (of course) may not be valid. If the ID\\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\\ngracefully.\\n\\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\\nactually returns something and fail the ioctl if not.\"}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2024-11-05T09:28:43.213Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-36953\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-05T09:28:43.213Z\", \"dateReserved\": \"2024-05-30T15:25:07.080Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-05-30T15:35:48.070Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
suse-su-2025:20073-1
Vulnerability from csaf_suse
Published
2025-02-03 09:04
Modified
2025-02-03 09:04
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- Drop mm patches that caused regressions (bsc#1230413)
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Move fixes into sorted section (bsc#1230119)
- Move s390 kabi patch into the kabi section
- Move upstreamed SCSI patches into sorted section
- Move upstreamed input patch into sorted section
- Move upstreamed kaslr patch into sorted section
- Move upstreamed nvme patches into sorted section
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for "dra7xx-pcie-main" IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert "afs: Hide silly-rename files from userspace" (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kABI: Split kABI out of 'io_uring/kbuf: get rid of bl->is_ready'
- kABI: Split kABI out of 'io_uring: Re-add dummy_ubuf for kABI purposes'
- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for "/tmp/perf-$PID.map" files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-SLE-Micro-6.0-81
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise Micro 6.0 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-42265: protect the fetch of -\u003efd[fd] in do_dup2() from mispredictions (bsc#1229334).\n- CVE-2024-42294: block: fix deadlock between sd_remove \u0026 sd_release (bsc#1229371).\n- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).\n- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).\n- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).\n- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).\n- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).\n- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45003: Don\u0027t evict inode under the inode lru traversing context (bsc#1230245).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).\n- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).\n- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).\n- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).\n- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).\n- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: tegra: Fix CBB error during probe() (git-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- Drop mm patches that caused regressions (bsc#1230413)\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- Move fixes into sorted section (bsc#1230119)\n- Move s390 kabi patch into the kabi section\n- Move upstreamed SCSI patches into sorted section\n- Move upstreamed input patch into sorted section\n- Move upstreamed kaslr patch into sorted section\n- Move upstreamed nvme patches into sorted section\n- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).\n- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).\n- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \"dra7xx-pcie-main\" IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).\n- Squashfs: sanity check symbolic link size (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \"afs: Hide silly-rename files from userspace\" (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: bcm: Remove proc entry when dev is unregistered (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: Release irq on error in m_can_open (git-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).\n- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).\n- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).\n- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).\n- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).\n- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).\n- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- driver: iio: add missing checks on iio_info\u0027s callback access (stable-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing (stable-fixes).\n- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).\n- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check BIOS images before it is used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check gpio_id before used as array index (stable-fixes).\n- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).\n- drm/amd/display: Check msg_id before processing transcation (stable-fixes).\n- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).\n- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).\n- drm/amd/display: Ensure array index tg_inst won\u0027t be -1 (stable-fixes).\n- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).\n- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).\n- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).\n- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).\n- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).\n- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).\n- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amd/display: Spinlock before reading event (stable-fixes).\n- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).\n- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).\n- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).\n- drm/amd/pm: Fix negative array index read (stable-fixes).\n- drm/amd/pm: check negtive return for table entries (stable-fixes).\n- drm/amd/pm: check specific index for aldebaran (stable-fixes).\n- drm/amd/pm: check specific index for smu13 (stable-fixes).\n- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).\n- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).\n- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).\n- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).\n- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).\n- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).\n- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).\n- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).\n- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).\n- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).\n- drm/amdgpu: fix dereference after null check (stable-fixes).\n- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix overflowed array index read warning (stable-fixes).\n- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).\n- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).\n- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).\n- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).\n- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).\n- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).\n- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).\n- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).\n- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).\n- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).\n- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).\n- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).\n- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/meson: plane: Add error handling (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).\n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- fuse: fix memory leak in fuse_create_open (bsc#1230124).\n- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).\n- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).\n- gpio: modepin: Enable module autoloading (git-fixes).\n- gpio: rockchip: fix OF node leak in probe() (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- iio: adc: ad7124: fix chip ID mismatch (git-fixes).\n- iio: adc: ad7124: fix config comparison (git-fixes).\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).\n- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)\n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- kABI: Split kABI out of \u0027io_uring/kbuf: get rid of bl-\u003eis_ready\u0027\n- kABI: Split kABI out of \u0027io_uring: Re-add dummy_ubuf for kABI purposes\u0027\n- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference \n- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- misc: fastrpc: Fix double free of \u0027buf\u0027 in error path (git-fixes).\n- mmc: core: apply SD quirks earlier during probe (git-fixes).\n- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).\n- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).\n- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup (git-fixes).\n- net: phy: Fix missing of_node_put() for leds (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nilfs2: fix state management in error path of log writing function (git-fixes).\n- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).\n- nouveau: fix the fwsec sb verification register (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).\n- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \"/tmp/perf-$PID.map\" files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).\n- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- usbip: Do not submit special requests twice (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- usbnet: modern method to get random MAC (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath11k: initialize \u0027ret\u0027 in ath11k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).\n- wifi: cfg80211: restrict operation during radar detection (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).\n- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).\n- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).\n- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-81",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20073-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20073-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520073-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20073-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021282.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1183045",
"url": "https://bugzilla.suse.com/1183045"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221527",
"url": "https://bugzilla.suse.com/1221527"
},
{
"category": "self",
"summary": "SUSE Bug 1221610",
"url": "https://bugzilla.suse.com/1221610"
},
{
"category": "self",
"summary": "SUSE Bug 1221650",
"url": "https://bugzilla.suse.com/1221650"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226846",
"url": "https://bugzilla.suse.com/1226846"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227726",
"url": "https://bugzilla.suse.com/1227726"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229001",
"url": "https://bugzilla.suse.com/1229001"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229334",
"url": "https://bugzilla.suse.com/1229334"
},
{
"category": "self",
"summary": "SUSE Bug 1229362",
"url": "https://bugzilla.suse.com/1229362"
},
{
"category": "self",
"summary": "SUSE Bug 1229363",
"url": "https://bugzilla.suse.com/1229363"
},
{
"category": "self",
"summary": "SUSE Bug 1229364",
"url": "https://bugzilla.suse.com/1229364"
},
{
"category": "self",
"summary": "SUSE Bug 1229371",
"url": "https://bugzilla.suse.com/1229371"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229389",
"url": "https://bugzilla.suse.com/1229389"
},
{
"category": "self",
"summary": "SUSE Bug 1229394",
"url": "https://bugzilla.suse.com/1229394"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229753",
"url": "https://bugzilla.suse.com/1229753"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229810",
"url": "https://bugzilla.suse.com/1229810"
},
{
"category": "self",
"summary": "SUSE Bug 1229899",
"url": "https://bugzilla.suse.com/1229899"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230123",
"url": "https://bugzilla.suse.com/1230123"
},
{
"category": "self",
"summary": "SUSE Bug 1230124",
"url": "https://bugzilla.suse.com/1230124"
},
{
"category": "self",
"summary": "SUSE Bug 1230125",
"url": "https://bugzilla.suse.com/1230125"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230171",
"url": "https://bugzilla.suse.com/1230171"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230180",
"url": "https://bugzilla.suse.com/1230180"
},
{
"category": "self",
"summary": "SUSE Bug 1230181",
"url": "https://bugzilla.suse.com/1230181"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230245",
"url": "https://bugzilla.suse.com/1230245"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE Bug 1231182",
"url": "https://bugzilla.suse.com/1231182"
},
{
"category": "self",
"summary": "SUSE Bug 1231183",
"url": "https://bugzilla.suse.com/1231183"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52610 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26640 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42294 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42304 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42305 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42306 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-02-03T09:04:16Z",
"generator": {
"date": "2025-02-03T09:04:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20073-1",
"initial_release_date": "2025-02-03T09:04:16Z",
"revision_history": [
{
"date": "2025-02-03T09:04:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-20.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-20.1.aarch64",
"product_id": "kernel-default-6.4.0-20.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-17.1.1.51.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-17.1.1.51.aarch64",
"product_id": "kernel-default-base-6.4.0-17.1.1.51.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-20.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-20.1.noarch",
"product_id": "kernel-devel-6.4.0-20.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-20.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-20.1.noarch",
"product_id": "kernel-macros-6.4.0-20.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-20.1.noarch",
"product": {
"name": "kernel-source-6.4.0-20.1.noarch",
"product_id": "kernel-source-6.4.0-20.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-20.1.s390x",
"product": {
"name": "kernel-default-6.4.0-20.1.s390x",
"product_id": "kernel-default-6.4.0-20.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-20.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-20.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-20.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"product_id": "kernel-livepatch-6_4_0-20-default-1-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-20.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-20.1.x86_64",
"product_id": "kernel-default-6.4.0-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-17.1.1.51.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-17.1.1.51.x86_64",
"product_id": "kernel-default-base-6.4.0-17.1.1.51.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-20.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-20.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-20.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-20.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-20.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"product_id": "kernel-livepatch-6_4_0-20-default-1-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-20.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-20.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-20.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x"
},
"product_reference": "kernel-default-6.4.0-20.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-20.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-17.1.1.51.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-17.1.1.51.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-17.1.1.51.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-17.1.1.51.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-20.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-20.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-20.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-20.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-20.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-20.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-20-default-1-1.2.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-20.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-20.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-20.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
},
"product_reference": "kernel-source-6.4.0-20.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix skb leak and crash on ooo frags\n\nact_ct adds skb-\u003eusers before defragmentation. If frags arrive in order,\nthe last frag\u0027s reference is reset in:\n\n inet_frag_reasm_prepare\n skb_morph\n\nwhich is not straightforward.\n\nHowever when frags arrive out of order, nobody unref the last frag, and\nall frags are leaked. The situation is even worse, as initiating packet\ncapture can lead to a crash[0] when skb has been cloned and shared at the\nsame time.\n\nFix the issue by removing skb_get() before defragmentation. act_ct\nreturns TC_ACT_CONSUMED when defrag failed or in progress.\n\n[0]:\n[ 843.804823] ------------[ cut here ]------------\n[ 843.809659] kernel BUG at net/core/skbuff.c:2091!\n[ 843.814516] invalid opcode: 0000 [#1] PREEMPT SMP\n[ 843.819296] CPU: 7 PID: 0 Comm: swapper/7 Kdump: loaded Tainted: G S 6.7.0-rc3 #2\n[ 843.824107] Hardware name: XFUSION 1288H V6/BC13MBSBD, BIOS 1.29 11/25/2022\n[ 843.828953] RIP: 0010:pskb_expand_head+0x2ac/0x300\n[ 843.833805] Code: 8b 70 28 48 85 f6 74 82 48 83 c6 08 bf 01 00 00 00 e8 38 bd ff ff 8b 83 c0 00 00 00 48 03 83 c8 00 00 00 e9 62 ff ff ff 0f 0b \u003c0f\u003e 0b e8 8d d0 ff ff e9 b3 fd ff ff 81 7c 24 14 40 01 00 00 4c 89\n[ 843.843698] RSP: 0018:ffffc9000cce07c0 EFLAGS: 00010202\n[ 843.848524] RAX: 0000000000000002 RBX: ffff88811a211d00 RCX: 0000000000000820\n[ 843.853299] RDX: 0000000000000640 RSI: 0000000000000000 RDI: ffff88811a211d00\n[ 843.857974] RBP: ffff888127d39518 R08: 00000000bee97314 R09: 0000000000000000\n[ 843.862584] R10: 0000000000000000 R11: ffff8881109f0000 R12: 0000000000000880\n[ 843.867147] R13: ffff888127d39580 R14: 0000000000000640 R15: ffff888170f7b900\n[ 843.871680] FS: 0000000000000000(0000) GS:ffff889ffffc0000(0000) knlGS:0000000000000000\n[ 843.876242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 843.880778] CR2: 00007fa42affcfb8 CR3: 000000011433a002 CR4: 0000000000770ef0\n[ 843.885336] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 843.889809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 843.894229] PKRU: 55555554\n[ 843.898539] Call Trace:\n[ 843.902772] \u003cIRQ\u003e\n[ 843.906922] ? __die_body+0x1e/0x60\n[ 843.911032] ? die+0x3c/0x60\n[ 843.915037] ? do_trap+0xe2/0x110\n[ 843.918911] ? pskb_expand_head+0x2ac/0x300\n[ 843.922687] ? do_error_trap+0x65/0x80\n[ 843.926342] ? pskb_expand_head+0x2ac/0x300\n[ 843.929905] ? exc_invalid_op+0x50/0x60\n[ 843.933398] ? pskb_expand_head+0x2ac/0x300\n[ 843.936835] ? asm_exc_invalid_op+0x1a/0x20\n[ 843.940226] ? pskb_expand_head+0x2ac/0x300\n[ 843.943580] inet_frag_reasm_prepare+0xd1/0x240\n[ 843.946904] ip_defrag+0x5d4/0x870\n[ 843.950132] nf_ct_handle_fragments+0xec/0x130 [nf_conntrack]\n[ 843.953334] tcf_ct_act+0x252/0xd90 [act_ct]\n[ 843.956473] ? tcf_mirred_act+0x516/0x5a0 [act_mirred]\n[ 843.959657] tcf_action_exec+0xa1/0x160\n[ 843.962823] fl_classify+0x1db/0x1f0 [cls_flower]\n[ 843.966010] ? skb_clone+0x53/0xc0\n[ 843.969173] tcf_classify+0x24d/0x420\n[ 843.972333] tc_run+0x8f/0xf0\n[ 843.975465] __netif_receive_skb_core+0x67a/0x1080\n[ 843.978634] ? dev_gro_receive+0x249/0x730\n[ 843.981759] __netif_receive_skb_list_core+0x12d/0x260\n[ 843.984869] netif_receive_skb_list_internal+0x1cb/0x2f0\n[ 843.987957] ? mlx5e_handle_rx_cqe_mpwrq_rep+0xfa/0x1a0 [mlx5_core]\n[ 843.991170] napi_complete_done+0x72/0x1a0\n[ 843.994305] mlx5e_napi_poll+0x28c/0x6d0 [mlx5_core]\n[ 843.997501] __napi_poll+0x25/0x1b0\n[ 844.000627] net_rx_action+0x256/0x330\n[ 844.003705] __do_softirq+0xb3/0x29b\n[ 844.006718] irq_exit_rcu+0x9e/0xc0\n[ 844.009672] common_interrupt+0x86/0xa0\n[ 844.012537] \u003c/IRQ\u003e\n[ 844.015285] \u003cTASK\u003e\n[ 844.017937] asm_common_interrupt+0x26/0x40\n[ 844.020591] RIP: 0010:acpi_safe_halt+0x1b/0x20\n[ 844.023247] Code: ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 65 48 8b 04 25 00 18 03 00 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 81 d0 44 00 fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52610",
"url": "https://www.suse.com/security/cve/CVE-2023-52610"
},
{
"category": "external",
"summary": "SUSE Bug 1221610 for CVE-2023-52610",
"url": "https://bugzilla.suse.com/1221610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26640"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: add sanity checks to rx zerocopy\n\nTCP rx zerocopy intent is to map pages initially allocated\nfrom NIC drivers, not pages owned by a fs.\n\nThis patch adds to can_map_frag() these additional checks:\n\n- Page must not be a compound one.\n- page-\u003emapping must be NULL.\n\nThis fixes the panic reported by ZhangPeng.\n\nsyzbot was able to loopback packets built with sendfile(),\nmapping pages owned by an ext4 file to TCP rx zerocopy.\n\nr3 = socket$inet_tcp(0x2, 0x1, 0x0)\nmmap(\u0026(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)\nr4 = socket$inet_tcp(0x2, 0x1, 0x0)\nbind$inet(r4, \u0026(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10)\nconnect$inet(r4, \u0026(0x7f00000006c0)={0x2, 0x4e24, @empty}, 0x10)\nr5 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)\nfallocate(r5, 0x0, 0x0, 0x85b8)\nsendfile(r4, r5, 0x0, 0x8ba0)\ngetsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23,\n \u0026(0x7f00000001c0)={\u0026(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0,\n 0x0, 0x0, 0x0, 0x0}, \u0026(0x7f0000000440)=0x40)\nr6 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26640",
"url": "https://www.suse.com/security/cve/CVE-2024-26640"
},
{
"category": "external",
"summary": "SUSE Bug 1221650 for CVE-2024-26640",
"url": "https://bugzilla.suse.com/1221650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26640"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data races in unix_release_sock/unix_stream_sendmsg\n\nA data-race condition has been identified in af_unix. In one data path,\nthe write function unix_release_sock() atomically writes to\nsk-\u003esk_shutdown using WRITE_ONCE. However, on the reader side,\nunix_stream_sendmsg() does not read it atomically. Consequently, this\nissue is causing the following KCSAN splat to occur:\n\n\tBUG: KCSAN: data-race in unix_release_sock / unix_stream_sendmsg\n\n\twrite (marked) to 0xffff88867256ddbb of 1 bytes by task 7270 on cpu 28:\n\tunix_release_sock (net/unix/af_unix.c:640)\n\tunix_release (net/unix/af_unix.c:1050)\n\tsock_close (net/socket.c:659 net/socket.c:1421)\n\t__fput (fs/file_table.c:422)\n\t__fput_sync (fs/file_table.c:508)\n\t__se_sys_close (fs/open.c:1559 fs/open.c:1541)\n\t__x64_sys_close (fs/open.c:1541)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tread to 0xffff88867256ddbb of 1 bytes by task 989 on cpu 14:\n\tunix_stream_sendmsg (net/unix/af_unix.c:2273)\n\t__sock_sendmsg (net/socket.c:730 net/socket.c:745)\n\t____sys_sendmsg (net/socket.c:2584)\n\t__sys_sendmmsg (net/socket.c:2638 net/socket.c:2724)\n\t__x64_sys_sendmmsg (net/socket.c:2753 net/socket.c:2750 net/socket.c:2750)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tvalue changed: 0x01 -\u003e 0x03\n\nThe line numbers are related to commit dd5a440a31fa (\"Linux 6.9-rc7\").\n\nCommit e1d09c2c2f57 (\"af_unix: Fix data races around sk-\u003esk_shutdown.\")\naddressed a comparable issue in the past regarding sk-\u003esk_shutdown.\nHowever, it overlooked resolving this particular data path.\nThis patch only offending unix_stream_sendmsg() function, since the\nother reads seem to be protected by unix_state_lock() as discussed in",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38596",
"url": "https://www.suse.com/security/cve/CVE-2024-38596"
},
{
"category": "external",
"summary": "SUSE Bug 1226846 for CVE-2024-38596",
"url": "https://bugzilla.suse.com/1226846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38596"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray\n\nPatch series \"mm/filemap: Limit page cache size to that supported by\nxarray\", v2.\n\nCurrently, xarray can\u0027t support arbitrary page cache size. More details\ncan be found from the WARN_ON() statement in xas_split_alloc(). In our\ntest whose code is attached below, we hit the WARN_ON() on ARM64 system\nwhere the base page size is 64KB and huge page size is 512MB. The issue\nwas reported long time ago and some discussions on it can be found here\n[1].\n\n[1] https://www.spinics.net/lists/linux-xfs/msg75404.html\n\nIn order to fix the issue, we need to adjust MAX_PAGECACHE_ORDER to one\nsupported by xarray and avoid PMD-sized page cache if needed. The code\nchanges are suggested by David Hildenbrand.\n\nPATCH[1] adjusts MAX_PAGECACHE_ORDER to that supported by xarray\nPATCH[2-3] avoids PMD-sized page cache in the synchronous readahead path\nPATCH[4] avoids PMD-sized page cache for shmem files if needed\n\nTest program\n============\n# cat test.c\n#define _GNU_SOURCE\n#include \u003cstdio.h\u003e\n#include \u003cstdlib.h\u003e\n#include \u003cunistd.h\u003e\n#include \u003cstring.h\u003e\n#include \u003cfcntl.h\u003e\n#include \u003cerrno.h\u003e\n#include \u003csys/syscall.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define TEST_XFS_FILENAME\t\"/tmp/data\"\n#define TEST_SHMEM_FILENAME\t\"/dev/shm/data\"\n#define TEST_MEM_SIZE\t\t0x20000000\n\nint main(int argc, char **argv)\n{\n\tconst char *filename;\n\tint fd = 0;\n\tvoid *buf = (void *)-1, *p;\n\tint pgsize = getpagesize();\n\tint ret;\n\n\tif (pgsize != 0x10000) {\n\t\tfprintf(stderr, \"64KB base page size is required\\n\");\n\t\treturn -EPERM;\n\t}\n\n\tsystem(\"echo force \u003e /sys/kernel/mm/transparent_hugepage/shmem_enabled\");\n\tsystem(\"rm -fr /tmp/data\");\n\tsystem(\"rm -fr /dev/shm/data\");\n\tsystem(\"echo 1 \u003e /proc/sys/vm/drop_caches\");\n\n\t/* Open xfs or shmem file */\n\tfilename = TEST_XFS_FILENAME;\n\tif (argc \u003e 1 \u0026\u0026 !strcmp(argv[1], \"shmem\"))\n\t\tfilename = TEST_SHMEM_FILENAME;\n\n\tfd = open(filename, O_CREAT | O_RDWR | O_TRUNC);\n\tif (fd \u003c 0) {\n\t\tfprintf(stderr, \"Unable to open \u003c%s\u003e\\n\", filename);\n\t\treturn -EIO;\n\t}\n\n\t/* Extend file size */\n\tret = ftruncate(fd, TEST_MEM_SIZE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to ftruncate()\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Create VMA */\n\tbuf = mmap(NULL, TEST_MEM_SIZE,\n\t\t PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);\n\tif (buf == (void *)-1) {\n\t\tfprintf(stderr, \"Unable to mmap \u003c%s\u003e\\n\", filename);\n\t\tgoto cleanup;\n\t}\n\n\tfprintf(stdout, \"mapped buffer at 0x%p\\n\", buf);\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_HUGEPAGE);\n if (ret) {\n\t\tfprintf(stderr, \"Unable to madvise(MADV_HUGEPAGE)\\n\");\n\t\tgoto cleanup;\n\t}\n\n\t/* Populate VMA */\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_POPULATE_WRITE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to madvise(MADV_POPULATE_WRITE)\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Punch the file to enforce xarray split */\n\tret = fallocate(fd, FALLOC_FL_KEEP_SIZE | FALLOC_FL_PUNCH_HOLE,\n \t\tTEST_MEM_SIZE - pgsize, pgsize);\n\tif (ret)\n\t\tfprintf(stderr, \"Error %d to fallocate()\\n\", ret);\n\ncleanup:\n\tif (buf != (void *)-1)\n\t\tmunmap(buf, TEST_MEM_SIZE);\n\tif (fd \u003e 0)\n\t\tclose(fd);\n\n\treturn 0;\n}\n\n# gcc test.c -o test\n# cat /proc/1/smaps | grep KernelPageSize | head -n 1\nKernelPageSize: 64 kB\n# ./test shmem\n :\n------------[ cut here ]------------\nWARNING: CPU: 17 PID: 5253 at lib/xarray.c:1025 xas_split_alloc+0xf8/0x128\nModules linked in: nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib \\\nnft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct \\\nnft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 \\\nip_set nf_tables rfkill nfnetlink vfat fat virtio_balloon \\\ndrm fuse xfs libcrc32c crct10dif_ce ghash_ce sha2_ce sha256_arm64 \\\nvirtio_net sha1_ce net_failover failover virtio_console virtio_blk \\\ndimlib virtio_mmio\nCPU: 17 PID: 5253 Comm: test Kdump: loaded Tainted: G W 6.10.0-rc5-gavin+ #12\nHardware name: QEMU KVM Virtual Machine, BIOS edk2-20240524-1.el9 05/24/2024\npstate: 83400005 (Nzcv daif +PAN -UAO +TC\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42243",
"url": "https://www.suse.com/security/cve/CVE-2024-42243"
},
{
"category": "external",
"summary": "SUSE Bug 1229001 for CVE-2024-42243",
"url": "https://bugzilla.suse.com/1229001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42243"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-42265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of -\u003efd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than -\u003emax_fds;\nhowever, misprediction might end up with\n tofree = fdt-\u003efd[fd];\nbeing speculatively executed. That\u0027s wrong for the same reasons\nwhy it\u0027s wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt-\u003emax_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42265",
"url": "https://www.suse.com/security/cve/CVE-2024-42265"
},
{
"category": "external",
"summary": "SUSE Bug 1229334 for CVE-2024-42265",
"url": "https://bugzilla.suse.com/1229334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42265"
},
{
"cve": "CVE-2024-42294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix deadlock between sd_remove \u0026 sd_release\n\nOur test report the following hung task:\n\n[ 2538.459400] INFO: task \"kworker/0:0\":7 blocked for more than 188 seconds.\n[ 2538.459427] Call trace:\n[ 2538.459430] __switch_to+0x174/0x338\n[ 2538.459436] __schedule+0x628/0x9c4\n[ 2538.459442] schedule+0x7c/0xe8\n[ 2538.459447] schedule_preempt_disabled+0x24/0x40\n[ 2538.459453] __mutex_lock+0x3ec/0xf04\n[ 2538.459456] __mutex_lock_slowpath+0x14/0x24\n[ 2538.459459] mutex_lock+0x30/0xd8\n[ 2538.459462] del_gendisk+0xdc/0x350\n[ 2538.459466] sd_remove+0x30/0x60\n[ 2538.459470] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459474] device_release_driver+0x18/0x28\n[ 2538.459478] bus_remove_device+0x15c/0x174\n[ 2538.459483] device_del+0x1d0/0x358\n[ 2538.459488] __scsi_remove_device+0xa8/0x198\n[ 2538.459493] scsi_forget_host+0x50/0x70\n[ 2538.459497] scsi_remove_host+0x80/0x180\n[ 2538.459502] usb_stor_disconnect+0x68/0xf4\n[ 2538.459506] usb_unbind_interface+0xd4/0x280\n[ 2538.459510] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459514] device_release_driver+0x18/0x28\n[ 2538.459518] bus_remove_device+0x15c/0x174\n[ 2538.459523] device_del+0x1d0/0x358\n[ 2538.459528] usb_disable_device+0x84/0x194\n[ 2538.459532] usb_disconnect+0xec/0x300\n[ 2538.459537] hub_event+0xb80/0x1870\n[ 2538.459541] process_scheduled_works+0x248/0x4dc\n[ 2538.459545] worker_thread+0x244/0x334\n[ 2538.459549] kthread+0x114/0x1bc\n\n[ 2538.461001] INFO: task \"fsck.\":15415 blocked for more than 188 seconds.\n[ 2538.461014] Call trace:\n[ 2538.461016] __switch_to+0x174/0x338\n[ 2538.461021] __schedule+0x628/0x9c4\n[ 2538.461025] schedule+0x7c/0xe8\n[ 2538.461030] blk_queue_enter+0xc4/0x160\n[ 2538.461034] blk_mq_alloc_request+0x120/0x1d4\n[ 2538.461037] scsi_execute_cmd+0x7c/0x23c\n[ 2538.461040] ioctl_internal_command+0x5c/0x164\n[ 2538.461046] scsi_set_medium_removal+0x5c/0xb0\n[ 2538.461051] sd_release+0x50/0x94\n[ 2538.461054] blkdev_put+0x190/0x28c\n[ 2538.461058] blkdev_release+0x28/0x40\n[ 2538.461063] __fput+0xf8/0x2a8\n[ 2538.461066] __fput_sync+0x28/0x5c\n[ 2538.461070] __arm64_sys_close+0x84/0xe8\n[ 2538.461073] invoke_syscall+0x58/0x114\n[ 2538.461078] el0_svc_common+0xac/0xe0\n[ 2538.461082] do_el0_svc+0x1c/0x28\n[ 2538.461087] el0_svc+0x38/0x68\n[ 2538.461090] el0t_64_sync_handler+0x68/0xbc\n[ 2538.461093] el0t_64_sync+0x1a8/0x1ac\n\n T1:\t\t\t\tT2:\n sd_remove\n del_gendisk\n __blk_mark_disk_dead\n blk_freeze_queue_start\n ++q-\u003emq_freeze_depth\n \t\t\t\tbdev_release\n \t\t\t\tmutex_lock(\u0026disk-\u003eopen_mutex)\n \t\t\t\tsd_release\n \t\t\t\tscsi_execute_cmd\n \t\t\t\tblk_queue_enter\n \t\t\t\twait_event(!q-\u003emq_freeze_depth)\n mutex_lock(\u0026disk-\u003eopen_mutex)\n\nSCSI does not set GD_OWNS_QUEUE, so QUEUE_FLAG_DYING is not set in\nthis scenario. This is a classic ABBA deadlock. To fix the deadlock,\nmake sure we don\u0027t try to acquire disk-\u003eopen_mutex after freezing\nthe queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42294",
"url": "https://www.suse.com/security/cve/CVE-2024-42294"
},
{
"category": "external",
"summary": "SUSE Bug 1229371 for CVE-2024-42294",
"url": "https://bugzilla.suse.com/1229371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42294"
},
{
"cve": "CVE-2024-42304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: make sure the first directory block is not a hole\n\nThe syzbot constructs a directory that has no dirblock but is non-inline,\ni.e. the first directory block is a hole. And no errors are reported when\ncreating files in this directory in the following flow.\n\n ext4_mknod\n ...\n ext4_add_entry\n // Read block 0\n ext4_read_dirblock(dir, block, DIRENT)\n bh = ext4_bread(NULL, inode, block, 0)\n if (!bh \u0026\u0026 (type == INDEX || type == DIRENT_HTREE))\n // The first directory block is a hole\n // But type == DIRENT, so no error is reported.\n\nAfter that, we get a directory block without \u0027.\u0027 and \u0027..\u0027 but with a valid\ndentry. This may cause some code that relies on dot or dotdot (such as\nmake_indexed_dir()) to crash.\n\nTherefore when ext4_read_dirblock() finds that the first directory block\nis a hole report that the filesystem is corrupted and return an error to\navoid loading corrupted data from disk causing something bad.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42304",
"url": "https://www.suse.com/security/cve/CVE-2024-42304"
},
{
"category": "external",
"summary": "SUSE Bug 1229364 for CVE-2024-42304",
"url": "https://bugzilla.suse.com/1229364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42304"
},
{
"cve": "CVE-2024-42305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check dot and dotdot of dx_root before making dir indexed\n\nSyzbot reports a issue as follows:\n============================================\nBUG: unable to handle page fault for address: ffffed11022e24fe\nPGD 23ffee067 P4D 23ffee067 PUD 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 5079 Comm: syz-executor306 Not tainted 6.10.0-rc5-g55027e689933 #0\nCall Trace:\n \u003cTASK\u003e\n make_indexed_dir+0xdaf/0x13c0 fs/ext4/namei.c:2341\n ext4_add_entry+0x222a/0x25d0 fs/ext4/namei.c:2451\n ext4_rename fs/ext4/namei.c:3936 [inline]\n ext4_rename2+0x26e5/0x4370 fs/ext4/namei.c:4214\n[...]\n============================================\n\nThe immediate cause of this problem is that there is only one valid dentry\nfor the block to be split during do_split, so split==0 results in out of\nbounds accesses to the map triggering the issue.\n\n do_split\n unsigned split\n dx_make_map\n count = 1\n split = count/2 = 0;\n continued = hash2 == map[split - 1].hash;\n ---\u003e map[4294967295]\n\nThe maximum length of a filename is 255 and the minimum block size is 1024,\nso it is always guaranteed that the number of entries is greater than or\nequal to 2 when do_split() is called.\n\nBut syzbot\u0027s crafted image has no dot and dotdot in dir, and the dentry\ndistribution in dirblock is as follows:\n\n bus dentry1 hole dentry2 free\n|xx--|xx-------------|...............|xx-------------|...............|\n0 12 (8+248)=256 268 256 524 (8+256)=264 788 236 1024\n\nSo when renaming dentry1 increases its name_len length by 1, neither hole\nnor free is sufficient to hold the new dentry, and make_indexed_dir() is\ncalled.\n\nIn make_indexed_dir() it is assumed that the first two entries of the\ndirblock must be dot and dotdot, so bus and dentry1 are left in dx_root\nbecause they are treated as dot and dotdot, and only dentry2 is moved\nto the new leaf block. That\u0027s why count is equal to 1.\n\nTherefore add the ext4_check_dx_root() helper function to add more sanity\nchecks to dot and dotdot before starting the conversion to avoid the above\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42305",
"url": "https://www.suse.com/security/cve/CVE-2024-42305"
},
{
"category": "external",
"summary": "SUSE Bug 1229363 for CVE-2024-42305",
"url": "https://bugzilla.suse.com/1229363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42305"
},
{
"cve": "CVE-2024-42306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42306",
"url": "https://www.suse.com/security/cve/CVE-2024-42306"
},
{
"category": "external",
"summary": "SUSE Bug 1229362 for CVE-2024-42306",
"url": "https://bugzilla.suse.com/1229362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42306"
},
{
"cve": "CVE-2024-43828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix infinite loop when replaying fast_commit\n\nWhen doing fast_commit replay an infinite loop may occur due to an\nuninitialized extent_status struct. ext4_ext_determine_insert_hole() does\nnot detect the replay and calls ext4_es_find_extent_range(), which will\nreturn immediately without initializing the \u0027es\u0027 variable.\n\nBecause \u0027es\u0027 contains garbage, an integer overflow may happen causing an\ninfinite loop in this function, easily reproducible using fstest generic/039.\n\nThis commit fixes this issue by unconditionally initializing the structure\nin function ext4_es_find_extent_range().\n\nThanks to Zhang Yi, for figuring out the real problem!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43828",
"url": "https://www.suse.com/security/cve/CVE-2024-43828"
},
{
"category": "external",
"summary": "SUSE Bug 1229394 for CVE-2024-43828",
"url": "https://bugzilla.suse.com/1229394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43828"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix bogus checksum computation in udf_rename()\n\nSyzbot reports uninitialized memory access in udf_rename() when updating\nchecksum of \u0027..\u0027 directory entry of a moved directory. This is indeed\ntrue as we pass on-stack diriter.fi to the udf_update_tag() and because\nthat has only struct fileIdentDesc included in it and not the impUse or\nname fields, the checksumming function is going to checksum random stack\ncontents beyond the end of the structure. This is actually harmless\nbecause the following udf_fiiter_write_fi() will recompute the checksum\nfrom on-disk buffers where everything is properly included. So all that\nis needed is just removing the bogus calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43845",
"url": "https://www.suse.com/security/cve/CVE-2024-43845"
},
{
"category": "external",
"summary": "SUSE Bug 1229389 for CVE-2024-43845",
"url": "https://bugzilla.suse.com/1229389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43845"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43898"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43898",
"url": "https://www.suse.com/security/cve/CVE-2024-43898"
},
{
"category": "external",
"summary": "SUSE Bug 1229753 for CVE-2024-43898",
"url": "https://bugzilla.suse.com/1229753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43898"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Fix null-ptr-deref in reuseport_add_sock().\n\nsyzbot reported a null-ptr-deref while accessing sk2-\u003esk_reuseport_cb in\nreuseport_add_sock(). [0]\n\nThe repro first creates a listener with SO_REUSEPORT. Then, it creates\nanother listener on the same port and concurrently closes the first\nlistener.\n\nThe second listen() calls reuseport_add_sock() with the first listener as\nsk2, where sk2-\u003esk_reuseport_cb is not expected to be cleared concurrently,\nbut the close() does clear it by reuseport_detach_sock().\n\nThe problem is SCTP does not properly synchronise reuseport_alloc(),\nreuseport_add_sock(), and reuseport_detach_sock().\n\nThe caller of reuseport_alloc() and reuseport_{add,detach}_sock() must\nprovide synchronisation for sockets that are classified into the same\nreuseport group.\n\nOtherwise, such sockets form multiple identical reuseport groups, and\nall groups except one would be silently dead.\n\n 1. Two sockets call listen() concurrently\n 2. No socket in the same group found in sctp_ep_hashtable[]\n 3. Two sockets call reuseport_alloc() and form two reuseport groups\n 4. Only one group hit first in __sctp_rcv_lookup_endpoint() receives\n incoming packets\n\nAlso, the reported null-ptr-deref could occur.\n\nTCP/UDP guarantees that would not happen by holding the hash bucket lock.\n\nLet\u0027s apply the locking strategy to __sctp_hash_endpoint() and\n__sctp_unhash_endpoint().\n\n[0]:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\nCPU: 1 UID: 0 PID: 10230 Comm: syz-executor119 Not tainted 6.10.0-syzkaller-12585-g301927d2d2eb #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nRIP: 0010:reuseport_add_sock+0x27e/0x5e0 net/core/sock_reuseport.c:350\nCode: 00 0f b7 5d 00 bf 01 00 00 00 89 de e8 1b a4 ff f7 83 fb 01 0f 85 a3 01 00 00 e8 6d a0 ff f7 49 8d 7e 12 48 89 f8 48 c1 e8 03 \u003c42\u003e 0f b6 04 28 84 c0 0f 85 4b 02 00 00 41 0f b7 5e 12 49 8d 7e 14\nRSP: 0018:ffffc9000b947c98 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff8880252ddf98 RCX: ffff888079478000\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000012\nRBP: 0000000000000001 R08: ffffffff8993e18d R09: 1ffffffff1fef385\nR10: dffffc0000000000 R11: fffffbfff1fef386 R12: ffff8880252ddac0\nR13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000\nFS: 00007f24e45b96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffcced5f7b8 CR3: 00000000241be000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __sctp_hash_endpoint net/sctp/input.c:762 [inline]\n sctp_hash_endpoint+0x52a/0x600 net/sctp/input.c:790\n sctp_listen_start net/sctp/socket.c:8570 [inline]\n sctp_inet_listen+0x767/0xa20 net/sctp/socket.c:8625\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]\n __se_sys_listen net/socket.c:1900 [inline]\n __x64_sys_listen+0x5a/0x70 net/socket.c:1900\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f24e46039b9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f24e45b9228 EFLAGS: 00000246 ORIG_RAX: 0000000000000032\nRAX: ffffffffffffffda RBX: 00007f24e468e428 RCX: 00007f24e46039b9\nRDX: 00007f24e46039b9 RSI: 0000000000000003 RDI: 0000000000000004\nRBP: 00007f24e468e420 R08: 00007f24e45b96c0 R09: 00007f24e45b96c0\nR10: 00007f24e45b96c0 R11: 0000000000000246 R12: 00007f24e468e42c\nR13:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44935",
"url": "https://www.suse.com/security/cve/CVE-2024-44935"
},
{
"category": "external",
"summary": "SUSE Bug 1229810 for CVE-2024-44935",
"url": "https://bugzilla.suse.com/1229810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44935"
},
{
"cve": "CVE-2024-44944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use helper function to calculate expect ID\n\nDelete expectation path is missing a call to the nf_expect_get_id()\nhelper function to calculate the expectation ID, otherwise LSB of the\nexpectation object address is leaked to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44944",
"url": "https://www.suse.com/security/cve/CVE-2024-44944"
},
{
"category": "external",
"summary": "SUSE Bug 1229899 for CVE-2024-44944",
"url": "https://bugzilla.suse.com/1229899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44944"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix invalid FIFO access with special register set\n\nWhen enabling access to the special register set, Receiver time-out and\nRHR interrupts can happen. In this case, the IRQ handler will try to read\nfrom the FIFO thru the RHR register at address 0x00, but address 0x00 is\nmapped to DLL register, resulting in erroneous FIFO reading.\n\nCall graph example:\n sc16is7xx_startup(): entry\n sc16is7xx_ms_proc(): entry\n sc16is7xx_set_termios(): entry\n sc16is7xx_set_baud(): DLH/DLL = $009C --\u003e access special register set\n sc16is7xx_port_irq() entry --\u003e IIR is 0x0C\n sc16is7xx_handle_rx() entry\n sc16is7xx_fifo_read(): --\u003e unable to access FIFO (RHR) because it is\n mapped to DLL (LCR=LCR_CONF_MODE_A)\n sc16is7xx_set_baud(): exit --\u003e Restore access to general register set\n\nFix the problem by claiming the efr_lock mutex when accessing the Special\nregister set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44950",
"url": "https://www.suse.com/security/cve/CVE-2024-44950"
},
{
"category": "external",
"summary": "SUSE Bug 1230180 for CVE-2024-44950",
"url": "https://bugzilla.suse.com/1230180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44950"
},
{
"cve": "CVE-2024-44951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix TX fifo corruption\n\nSometimes, when a packet is received on channel A at almost the same time\nas a packet is about to be transmitted on channel B, we observe with a\nlogic analyzer that the received packet on channel A is transmitted on\nchannel B. In other words, the Tx buffer data on channel B is corrupted\nwith data from channel A.\n\nThe problem appeared since commit 4409df5866b7 (\"serial: sc16is7xx: change\nEFR lock to operate on each channels\"), which changed the EFR locking to\noperate on each channel instead of chip-wise.\n\nThis commit has introduced a regression, because the EFR lock is used not\nonly to protect the EFR registers access, but also, in a very obscure and\nundocumented way, to protect access to the data buffer, which is shared by\nthe Tx and Rx handlers, but also by each channel of the IC.\n\nFix this regression first by switching to kfifo_out_linear_ptr() in\nsc16is7xx_handle_tx() to eliminate the need for a shared Rx/Tx buffer.\n\nSecondly, replace the chip-wise Rx buffer with a separate Rx buffer for\neach channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44951",
"url": "https://www.suse.com/security/cve/CVE-2024-44951"
},
{
"category": "external",
"summary": "SUSE Bug 1230181 for CVE-2024-44951",
"url": "https://bugzilla.suse.com/1230181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44951"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UAF in ip6_xmit()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand the associated dst/idev could also have been freed.\n\nWe must use rcu_read_lock() to prevent a possible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44985",
"url": "https://www.suse.com/security/cve/CVE-2024-44985"
},
{
"category": "external",
"summary": "SUSE Bug 1230206 for CVE-2024-44985",
"url": "https://bugzilla.suse.com/1230206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44985"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can\u0027t dereference \"skb\" after calling vcc-\u003epush() because the skb\nis released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44998",
"url": "https://www.suse.com/security/cve/CVE-2024-44998"
},
{
"category": "external",
"summary": "SUSE Bug 1230171 for CVE-2024-44998",
"url": "https://bugzilla.suse.com/1230171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44998"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: Don\u0027t evict inode under the inode lru traversing context\n\nThe inode reclaiming process(See function prune_icache_sb) collects all\nreclaimable inodes and mark them with I_FREEING flag at first, at that\ntime, other processes will be stuck if they try getting these inodes\n(See function find_inode_fast), then the reclaiming process destroy the\ninodes by function dispose_list(). Some filesystems(eg. ext4 with\nea_inode feature, ubifs with xattr) may do inode lookup in the inode\nevicting callback function, if the inode lookup is operated under the\ninode lru traversing context, deadlock problems may happen.\n\nCase 1: In function ext4_evict_inode(), the ea inode lookup could happen\n if ea_inode feature is enabled, the lookup process will be stuck\n\tunder the evicting context like this:\n\n 1. File A has inode i_reg and an ea inode i_ea\n 2. getfattr(A, xattr_buf) // i_ea is added into lru // lru-\u003ei_ea\n 3. Then, following three processes running like this:\n\n PA PB\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // i_reg is added into lru, lru-\u003ei_ea-\u003ei_reg\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n i_ea-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(i_reg)\n spin_unlock(\u0026i_reg-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file A\n i_reg-\u003enlink = 0\n iput(i_reg) // i_reg-\u003enlink is 0, do evict\n ext4_evict_inode\n ext4_xattr_delete_inode\n ext4_xattr_inode_dec_ref_all\n ext4_xattr_inode_iget\n ext4_iget(i_ea-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(i_ea) ----\u2192 AA deadlock\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026i_ea-\u003ei_state)\n\nCase 2: In deleted inode writing function ubifs_jnl_write_inode(), file\n deleting process holds BASEHD\u0027s wbuf-\u003eio_mutex while getting the\n\txattr inode, which could race with inode reclaiming process(The\n reclaiming process could try locking BASEHD\u0027s wbuf-\u003eio_mutex in\n\tinode evicting function), then an ABBA deadlock problem would\n\thappen as following:\n\n 1. File A has inode ia and a xattr(with inode ixa), regular file B has\n inode ib and a xattr.\n 2. getfattr(A, xattr_buf) // ixa is added into lru // lru-\u003eixa\n 3. Then, following three processes running like this:\n\n PA PB PC\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // ib and ia are added into lru, lru-\u003eixa-\u003eib-\u003eia\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n ixa-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(ib)\n spin_unlock(\u0026ib-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file B\n ib-\u003enlink = 0\n rm file A\n iput(ia)\n ubifs_evict_inode(ia)\n ubifs_jnl_delete_inode(ia)\n ubifs_jnl_write_inode(ia)\n make_reservation(BASEHD) // Lock wbuf-\u003eio_mutex\n ubifs_iget(ixa-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(ixa)\n | iput(ib) // ib-\u003enlink is 0, do evict\n | ubifs_evict_inode\n | ubifs_jnl_delete_inode(ib)\n \u2193 ubifs_jnl_write_inode\n ABBA deadlock \u2190-----make_reservation(BASEHD)\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026ixa-\u003ei_state)\n\nFix the possible deadlock by using new inode state flag I_LRU_ISOLATING\nto pin the inode in memory while inode_lru_isolate(\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45003",
"url": "https://www.suse.com/security/cve/CVE-2024-45003"
},
{
"category": "external",
"summary": "SUSE Bug 1230245 for CVE-2024-45003",
"url": "https://bugzilla.suse.com/1230245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45003"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-17.1.1.51.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-20.1.x86_64",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.s390x",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-20-default-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-20.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-20.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:04:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2024:4315-1
Vulnerability from csaf_suse
Published
2024-12-13 15:23
Modified
2024-12-13 15:23
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560).
- CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959).
- CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590).
- CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).
- CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656).
- CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb->head (bsc#1224518).
- CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526).
- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).
- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).
- CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742).
- CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764).
- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).
- CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592).
- CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853).
- CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430).
- CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808).
- CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220).
- CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231).
- CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558).
- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).
- CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()&iput() (bsc#1231930).
- CVE-2024-47701: ext4: avoid OOB when system.data xattr changes underneath the filesystem (bsc#1231920).
- CVE-2024-47745: mm: call the security_mmap_file() LSM hook in remap_file_pages() (bsc#1232135).
- CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187).
- CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272).
- CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371).
- CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224)
- CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387).
- CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165).
- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).
- CVE-2024-49968: ext4: filesystems without casefold feature cannot be mounted with siphash (bsc#1232264).
- CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096).
- CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483).
- CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value (bsc#1232318).
- CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520).
- CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500).
- CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860).
- CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877).
- CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881).
- CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884).
- CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885).
- CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919).
- CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928).
- CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907).
- CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905).
- CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890).
- CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888).
- CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935).
- CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056).
- CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067).
- CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061).
- CVE-2024-50154: tcp/dccp: Do not use timer_pending() in reqsk_queue_unlink() (bsc#1233070).
- CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049).
- CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057).
- CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129).
- CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135).
- CVE-2024-50186: net: explicitly clear the sk pointer, when pf->create fails (bsc#1233110).
- CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107).
- CVE-2024-50192: irqchip/gic-v4: Do not allow a VMOVP on a dying VPE (bsc#1233106).
- CVE-2024-50195: posix-clock: Fix missing timespec64 check in pc_clock_settime() (bsc#1233103).
- CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113).
- CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293).
- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117).
- CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205).
- CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206).
- CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214).
- CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253).
- CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233453).
- CVE-2024-50267: usb: serial: io_edgeport: fix use after free in debug printk (bsc#1233456).
- CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460).
- CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462).
- CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478).
- CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484).
- CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487).
- CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548).
- CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552).
- CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555).
- CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557).
- CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561).
- CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570).
- CVE-2024-53088: i40e: fix race condition by adding filter's intermediate sync state (bsc#1233580).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).
- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).
The following non-security bugs were fixed:
- Drop OCFS2 patch causing a regression (bsc#1233255)
- Fix regression on AMDGPU driver (bsc#1233134)
- Removed the duplicated check of static_assert(sizeof(struct work_struct) >= sizeof(struct rcu_head)).
- Removed unnecessary white-space change in kernel/bpf/syscall.c
- Revert 'cgroup: Fix memory leak caused by missing cgroup_bpf_offline' (bsc#1234108).
- Revert 'ixgbe: Manual AN-37 for troublesome link partners for X550 SFI' (git-fixes).
- Revert 'mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K' (git-fixes).
- Revert 'usb: gadget: composite: fix OS descriptors w_value logic' (git-fixes).
- Update config files (bsc#1218644).
- Update config files. Enabled IDPF for ARM64 (bsc#1221309)
- acpi: CPPC: Fix _CPC register setting issue (git-fixes).
- acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).
- acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).
- acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).
- ad7780: fix division by zero in ad7780_write_raw() (git-fixes).
- adapt same struct naming as similar kABI workaround in SLE15-SP6 (prefixed with 'suse_' to make it more obvious its a downstream thing.
- add bugreference to a hv_netvsc patch (bsc#1232413).
- add commit message for the kABI patch
- alsa: 6fire: Release resources at card release (git-fixes).
- alsa: ac97: bus: Fix the mistake in the comment (git-fixes).
- alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes).
- alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes).
- alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).
- alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).
- alsa: hda/realtek: Update ALC225 depop procedure (git-fixes).
- alsa: hda/realtek: Update ALC256 depop procedure (git-fixes).
- alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes).
- alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes).
- alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).
- alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes).
- amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes).
- arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)
- arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)
- arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes)
- asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes).
- asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes).
- asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).
- asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).
- asoc: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes).
- asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).
- asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes).
- blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528).
- block: Avoid leaking hctx->nr_active counter on batched completion (bsc#1231923).
- bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes).
- bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).
- bnxt_en: Fix the PCI-AER routines (git-fixes).
- bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes).
- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).
- bnxt_en: Wait for FLR to complete during probe (git-fixes).
- bnxt_en: refactor reset close code (git-fixes).
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).
- can: c_can: fix {rx,tx}_errors statistics (git-fixes).
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108).
- chtls: fix tp->rcv_tstamp initialization (git-fixes).
- comedi: Flush partial mappings in error case (git-fixes).
- crypto: bcm - add error check in the ahash_hmac_init function (git-fixes).
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes).
- crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes).
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes).
- crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes).
- crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes).
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes).
- cxgb4: Properly lock TX queue for the selftest (git-fixes).
- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).
- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).
- drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes).
- drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes).
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes).
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes).
- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes).
- drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes).
- drm/bridge: tc358767: Fix link properties discovery (git-fixes).
- drm/bridge: tc358768: Fix DSI command tx (git-fixes).
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes).
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes).
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes).
- drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes).
- drm/omap: Fix possible NULL dereference (git-fixes).
- drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes).
- drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes).
- drm/sti: avoid potential dereference of error pointers (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes).
- drm/v3d: Address race-condition in MMU flush (git-fixes).
- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).
- drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes).
- drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes).
- drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes).
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes).
- e1000e: Fix S0ix residency on corporate systems (git-fixes).
- efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465).
- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).
- firmware: google: Unregister driver_info on failure (git-fixes).
- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).
- goldfish: Fix unused const variable 'goldfish_pipe_acpi_match' (git-fixes).
- gve: Fix XDP TX completion handling when counters overflow (git-fixes).
- gve: Fix an edge case for TSO skb validity check (git-fixes).
- gve: Fix skb truesize underestimation (git-fixes).
- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).
- hid: core: zero-initialize the report buffer (git-fixes).
- hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes).
- hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes).
- hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes).
- hid: multitouch: Add support for B2402FVA track point (stable-fixes).
- hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes).
- hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes).
- hid: wacom: fix when get product name maybe null pointer (git-fixes).
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (git-fixes).
- hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes).
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes).
- i40e: Fix XDP program unloading while removing the driver (git-fixes).
- i40e: Fix filter input checks to prevent config with invalid values (git-fixes).
- i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes).
- i40e: Report MFS in decimal base instead of hex (git-fixes).
- i40e: Restore VF MSI-X state during PCI reset (git-fixes).
- i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes).
- i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes).
- i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes).
- i40e: take into account XDP Tx queues when stopping rings (git-fixes).
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).
- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).
- iavf: Fix promiscuous mode configuration flow messages (git-fixes).
- iavf: Introduce new state machines for flow director (git-fixes).
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes).
- iavf: fix FDIR rule fields masks validation (git-fixes).
- iavf: in iavf_down, disable queues when removing the driver (git-fixes).
- iavf: initialize waitqueues before starting watchdog_task (git-fixes).
- iavf: send VLAN offloading caps once after VFR (git-fixes).
- iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes).
- ibmvnic: Do partial reset on login failure (bsc#1233150).
- ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150).
- ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150).
- ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150).
- ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150).
- ice: Block switchdev mode when ADQ is active and vice versa (git-fixes).
- ice: Fix NULL pointer deref during VF reset (git-fixes).
- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).
- ice: Fix link_down_on_close message (git-fixes).
- ice: Fix netif_is_ice() in Safe Mode (git-fixes).
- ice: Interpret .set_channels() input differently (git-fixes).
- ice: Shut down VSI with 'link-down-on-close' enabled (git-fixes).
- ice: avoid executing commands on other ports when driving sync (git-fixes).
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: fix ICE_LAST_OFFSET formula (git-fixes).
- ice: fix VLAN replay after reset (git-fixes).
- ice: fix accounting for filters shared by multiple VSIs (git-fixes).
- ice: fix accounting if a VLAN already exists (git-fixes).
- ice: fix over-shifted variable (git-fixes).
- ice: fix receive buffer size miscalculation (git-fixes).
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes).
- ice: reset first in crash dump kernels (git-fixes).
- ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes).
- ice: tc: allow zero flags in parsing tc flower (git-fixes).
- ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes).
- idpf: Interpret .set_channels() input differently (git-fixes).
- idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes).
- idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes).
- idpf: disable local BH when scheduling napi for marker packets (git-fixes).
- idpf: distinguish vports by the dev_port attribute (git-fixes).
- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).
- idpf: fix UAFs when destroying the queues (git-fixes).
- idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes).
- idpf: fix memleak in vport interrupt configuration (git-fixes).
- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).
- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).
- igb: Fix missing time sync events (git-fixes).
- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).
- igb: extend PTP timestamp adjustments to i211 (git-fixes).
- igc: Check VLAN EtherType mask (git-fixes).
- igc: Check VLAN TCI mask (git-fixes).
- igc: Fix hicredit calculation (git-fixes).
- igc: Fix missing time sync events (git-fixes).
- igc: Remove temporary workaround (git-fixes).
- igc: Report VLAN EtherType matching back to user (git-fixes).
- igc: Unlock on error in igc_io_resume() (git-fixes).
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).
- iio: adc: ad7606: Fix typo in the driver name (git-fixes).
- iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes).
- iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes).
- iio: light: veml6030: fix microlux value calculation (git-fixes).
- initramfs: avoid filename buffer overrun (bsc#1232436).
- input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes).
- input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes).
- input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes).
- irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes).
- irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes).
- ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes).
- ixgbe: fix crash with empty VF macvlan list (git-fixes).
- ixgbe: fix timestamp configuration code (git-fixes).
- ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes).
- kABI: Restore exported __arm_smccc_sve_check (git-fixes)
- kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644).
- kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes)
- kexec: fix a memory leak in crash_shrink_memory() (git-fixes).
- kvm: PPC: Book3S HV: remove unused varible (bsc#1194869).
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).
- media: adv7604: prevent underflow condition when reporting colorspace (git-fixes).
- media: cx24116: prevent overflows on SNR calculus (git-fixes).
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes).
- media: dvb-usb-v2: af9035: fix missing unlock (git-fixes).
- media: dvb_frontend: do not play tricks with underflow values (git-fixes).
- media: dvbdev: prevent the risk of out of memory access (git-fixes).
- media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes).
- media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes).
- media: stb0899_algo: initialize cfr before using it (git-fixes).
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes).
- media: v4l2-tpg: prevent the risk of a division by zero (git-fixes).
- mei: use kvmalloc for read buffer (git-fixes).
- misc: apds990x: Fix missing pm_runtime_disable() (git-fixes).
- mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012).
- mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646).
- modpost: remove incorrect code in do_eisa_entry() (git-fixes).
- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).
- net/mlx5: Added cond_resched() to crdump collection (git-fixes).
- net/mlx5: Allow 0 for total host VFs (git-fixes).
- net/mlx5: Correctly compare pkt reformat ids (git-fixes).
- net/mlx5: DR, Can't go to uplink vport on RX rule (git-fixes).
- net/mlx5: DR, Use the right GVMI number for drop action (git-fixes).
- net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes).
- net/mlx5: Drain health before unregistering devlink (git-fixes).
- net/mlx5: E-switch, register event handler before arming the event (git-fixes).
- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).
- net/mlx5: Fix fw tracer first block check (git-fixes).
- net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes).
- net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes).
- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).
- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).
- net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes).
- net/mlx5: Skip clock update work when device is in error state (git-fixes).
- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).
- net/mlx5: Update the list of the PCI supported devices (git-fixes).
- net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes).
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes).
- net/mlx5: Use recovery timeout on sync reset flow (git-fixes).
- net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes).
- net/mlx5: fs, lock FTE when checking if active (git-fixes).
- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).
- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).
- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).
- net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes).
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes).
- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).
- net/mlx5e: Do not offload internal port if filter device is out device (git-fixes).
- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).
- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).
- net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes).
- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).
- net/mlx5e: Fix pedit endianness (git-fixes).
- net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes).
- net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes).
- net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes).
- net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes).
- net/mlx5e: Reduce the size of icosq_str (git-fixes).
- net/mlx5e: Take state lock during tx timeout reporter (git-fixes).
- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).
- net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes).
- net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes).
- net/mlx5e: fix double free of encap_header (git-fixes).
- net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes).
- net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes).
- net: ena: Fix potential sign extension issue (git-fixes).
- net: ena: Remove ena_select_queue (git-fixes).
- net: ena: Wrong missing IO completions check order (git-fixes).
- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).
- net: relax socket state check at accept time (git-fixes).
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes).
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes).
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes).
- net: usb: usbnet: fix race in probe failure (git-fixes).
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes).
- nvme-fabrics: fix kernel crash while shutting down controller (git-fixes).
- nvme-pci: fix freeing of the HMB descriptor table (git-fixes).
- nvme-pci: reverse request order in nvme_queue_rqs (git-fixes).
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes).
- pci: Add T_PVPERL macro (git-fixes).
- pci: Fix reset_method_store() memory leak (git-fixes).
- pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes).
- pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes).
- pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes).
- pci: keystone: Set mode as Root Complex for 'ti,keystone-pcie' compatible (git-fixes).
- pci: rockchip-ep: Fix address translation unit programming (git-fixes).
- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes).
- platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes).
- platform/x86: dell-sysman: add support for alienware products (stable-fixes).
- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098).
- power: supply: bq27xxx: Fix registers of bq27426 (git-fixes).
- power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes).
- powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869).
- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).
- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).
- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).
- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).
- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).
- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).
- powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869).
- qed: avoid truncating work queue length (git-fixes).
- rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes)
- rdma/hns: Add clear_hem return value to log (git-fixes)
- rdma/hns: Add mutex_destroy() (git-fixes)
- rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes)
- rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes)
- rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes)
- rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes)
- rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes)
- rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes)
- rdma/hns: Remove unnecessary QP type checks (git-fixes)
- rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes)
- rdma/hns: Use macro instead of magic number (git-fixes)
- rdma/mlx5: Move events notifier registration to be after device registration (git-fixes)
- rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).
- rdma/rxe: Fix the qp flush warnings in req (git-fixes)
- rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes)
- rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644)
- rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes).
- rtc: abx80x: Fix WDT bit position of the status register (git-fixes).
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes).
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241).
- scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241).
- scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241).
- scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241).
- scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241).
- scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241).
- scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241).
- scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241).
- scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241).
- scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241).
- scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241).
- scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes).
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes).
- security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes).
- serial: 8250: omap: Move pm_runtime_get_sync (git-fixes).
- sfc: Check firmware supports Ethernet PTP filter (git-fixes).
- sfc: do not unregister flow_indr if it was never registered (git-fixes).
- sfc: fix a double-free bug in efx_probe_filters (git-fixes).
- signal: Replace BUG_ON()s (bsc#1234093).
- spi: Fix acpi deferred irq probe (git-fixes).
- spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes).
- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).
- thermal: core: Initialize thermal zones before registering them (git-fixes).
- thermal: intel: int340x: processor: Fix warning during module unload (git-fixes).
- tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes).
- tun: Fix xdp_rxq_info's queue_index when detaching (git-fixes).
- tun: prevent negative ifindex (git-fixes).
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460).
- usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes).
- usb: chaoskey: fail open after removal (git-fixes).
- usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes).
- usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes).
- usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes).
- usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes).
- usb: musb: sunxi: Fix accessing an released usb phy (git-fixes).
- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).
- usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes).
- usb: serial: io_edgeport: fix use after free in debug printk (git-fixes).
- usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes).
- usb: serial: option: add Quectel RG650V (stable-fixes).
- usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes).
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes).
- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes).
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes).
- usb: yurex: make waiting on yurex_write interruptible (git-fixes).
- usbip: tools: Fix detach_port() invalid port error path (git-fixes).
- vdpa/mlx5: preserve CVQ vringh index (git-fixes).
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).
- watchdog: rti: of: honor timeout-sec property (git-fixes).
- wifi: ath10k: Fix memory leak in management tx (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes).
- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes).
- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).
- wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes).
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).
- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes).
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes).
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- x86/kvm: fix is_stale_page_fault() (bsc#1221333).
- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).
- xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes).
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).
Patchnames
SUSE-2024-4315,SUSE-SLE-Micro-5.5-2024-4315,SUSE-SLE-Module-Live-Patching-15-SP5-2024-4315,SUSE-SLE-Module-RT-15-SP5-2024-4315,openSUSE-Leap-Micro-5.5-2024-4315,openSUSE-SLE-15.5-2024-4315
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560).\n- CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959).\n- CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590).\n- CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).\n- CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656).\n- CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb-\u003ehead (bsc#1224518).\n- CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526).\n- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).\n- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).\n- CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742).\n- CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764).\n- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).\n- CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592).\n- CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853).\n- CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430).\n- CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808).\n- CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220).\n- CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231).\n- CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558).\n- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).\n- CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()\u0026iput() (bsc#1231930).\n- CVE-2024-47701: ext4: avoid OOB when system.data xattr changes underneath the filesystem (bsc#1231920).\n- CVE-2024-47745: mm: call the security_mmap_file() LSM hook in remap_file_pages() (bsc#1232135).\n- CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187).\n- CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272).\n- CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371).\n- CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224)\n- CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387).\n- CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165).\n- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).\n- CVE-2024-49968: ext4: filesystems without casefold feature cannot be mounted with siphash (bsc#1232264).\n- CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096).\n- CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483).\n- CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value (bsc#1232318).\n- CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520).\n- CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500).\n- CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860).\n- CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877).\n- CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881).\n- CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884).\n- CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885).\n- CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919).\n- CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928).\n- CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907).\n- CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905).\n- CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890).\n- CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888).\n- CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935).\n- CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056).\n- CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067).\n- CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061).\n- CVE-2024-50154: tcp/dccp: Do not use timer_pending() in reqsk_queue_unlink() (bsc#1233070).\n- CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049).\n- CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057).\n- CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129).\n- CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135).\n- CVE-2024-50186: net: explicitly clear the sk pointer, when pf-\u003ecreate fails (bsc#1233110).\n- CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107).\n- CVE-2024-50192: irqchip/gic-v4: Do not allow a VMOVP on a dying VPE (bsc#1233106).\n- CVE-2024-50195: posix-clock: Fix missing timespec64 check in pc_clock_settime() (bsc#1233103).\n- CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113).\n- CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293).\n- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117).\n- CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205).\n- CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206).\n- CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214).\n- CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253).\n- CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans (bsc#1233453).\n- CVE-2024-50267: usb: serial: io_edgeport: fix use after free in debug printk (bsc#1233456).\n- CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460).\n- CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462).\n- CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478).\n- CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484).\n- CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487).\n- CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548).\n- CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552).\n- CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555).\n- CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557).\n- CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561).\n- CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570).\n- CVE-2024-53088: i40e: fix race condition by adding filter\u0027s intermediate sync state (bsc#1233580).\n- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).\n- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).\n\nThe following non-security bugs were fixed:\n\n- Drop OCFS2 patch causing a regression (bsc#1233255)\n- Fix regression on AMDGPU driver (bsc#1233134)\n- Removed the duplicated check of static_assert(sizeof(struct work_struct) \u003e= sizeof(struct rcu_head)).\n- Removed unnecessary white-space change in kernel/bpf/syscall.c\n- Revert \u0027cgroup: Fix memory leak caused by missing cgroup_bpf_offline\u0027 (bsc#1234108).\n- Revert \u0027ixgbe: Manual AN-37 for troublesome link partners for X550 SFI\u0027 (git-fixes).\n- Revert \u0027mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\u0027 (git-fixes).\n- Revert \u0027usb: gadget: composite: fix OS descriptors w_value logic\u0027 (git-fixes).\n- Update config files (bsc#1218644).\n- Update config files. Enabled IDPF for ARM64 (bsc#1221309)\n- acpi: CPPC: Fix _CPC register setting issue (git-fixes).\n- acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).\n- acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).\n- acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).\n- ad7780: fix division by zero in ad7780_write_raw() (git-fixes).\n- adapt same struct naming as similar kABI workaround in SLE15-SP6 (prefixed with \u0027suse_\u0027 to make it more obvious its a downstream thing.\n- add bugreference to a hv_netvsc patch (bsc#1232413).\n- add commit message for the kABI patch\n- alsa: 6fire: Release resources at card release (git-fixes).\n- alsa: ac97: bus: Fix the mistake in the comment (git-fixes).\n- alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes).\n- alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes).\n- alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).\n- alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).\n- alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).\n- alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).\n- alsa: hda/realtek: Update ALC225 depop procedure (git-fixes).\n- alsa: hda/realtek: Update ALC256 depop procedure (git-fixes).\n- alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes).\n- alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes).\n- alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).\n- alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes).\n- arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)\n- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)\n- arm64: smccc: replace custom COUNT_ARGS() \u0026 CONCATENATE() (git-fixes)\n- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)\n- arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes)\n- asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes).\n- asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes).\n- asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).\n- asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).\n- asoc: fsl_sai: Enable \u0027FIFO continue on error\u0027 FCONT bit (stable-fixes).\n- asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).\n- asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes).\n- blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528).\n- block: Avoid leaking hctx-\u003enr_active counter on batched completion (bsc#1231923).\n- bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes).\n- bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).\n- bnxt_en: Fix the PCI-AER routines (git-fixes).\n- bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes).\n- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).\n- bnxt_en: Wait for FLR to complete during probe (git-fixes).\n- bnxt_en: refactor reset close code (git-fixes).\n- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).\n- can: c_can: fix {rx,tx}_errors statistics (git-fixes).\n- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).\n- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).\n- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).\n- cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108).\n- chtls: fix tp-\u003ercv_tstamp initialization (git-fixes).\n- comedi: Flush partial mappings in error case (git-fixes).\n- crypto: bcm - add error check in the ahash_hmac_init function (git-fixes).\n- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes).\n- crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes).\n- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes).\n- crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes).\n- crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes).\n- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes).\n- cxgb4: Properly lock TX queue for the selftest (git-fixes).\n- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).\n- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).\n- drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes).\n- drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes).\n- drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes).\n- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes).\n- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes).\n- drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes).\n- drm/bridge: tc358767: Fix link properties discovery (git-fixes).\n- drm/bridge: tc358768: Fix DSI command tx (git-fixes).\n- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes).\n- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes).\n- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes).\n- drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes).\n- drm/omap: Fix possible NULL dereference (git-fixes).\n- drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes).\n- drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes).\n- drm/sti: avoid potential dereference of error pointers (git-fixes).\n- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes).\n- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes).\n- drm/v3d: Address race-condition in MMU flush (git-fixes).\n- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).\n- drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes).\n- drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes).\n- drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes).\n- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes).\n- e1000e: Fix S0ix residency on corporate systems (git-fixes).\n- efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465).\n- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).\n- firmware: google: Unregister driver_info on failure (git-fixes).\n- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).\n- goldfish: Fix unused const variable \u0027goldfish_pipe_acpi_match\u0027 (git-fixes).\n- gve: Fix XDP TX completion handling when counters overflow (git-fixes).\n- gve: Fix an edge case for TSO skb validity check (git-fixes).\n- gve: Fix skb truesize underestimation (git-fixes).\n- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).\n- hid: core: zero-initialize the report buffer (git-fixes).\n- hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes).\n- hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes).\n- hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes).\n- hid: multitouch: Add support for B2402FVA track point (stable-fixes).\n- hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes).\n- hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes).\n- hid: wacom: fix when get product name maybe null pointer (git-fixes).\n- hv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer (git-fixes).\n- hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes).\n- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes).\n- i40e: Fix XDP program unloading while removing the driver (git-fixes).\n- i40e: Fix filter input checks to prevent config with invalid values (git-fixes).\n- i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes).\n- i40e: Report MFS in decimal base instead of hex (git-fixes).\n- i40e: Restore VF MSI-X state during PCI reset (git-fixes).\n- i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes).\n- i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes).\n- i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes).\n- i40e: take into account XDP Tx queues when stopping rings (git-fixes).\n- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).\n- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).\n- iavf: Fix promiscuous mode configuration flow messages (git-fixes).\n- iavf: Introduce new state machines for flow director (git-fixes).\n- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes).\n- iavf: fix FDIR rule fields masks validation (git-fixes).\n- iavf: in iavf_down, disable queues when removing the driver (git-fixes).\n- iavf: initialize waitqueues before starting watchdog_task (git-fixes).\n- iavf: send VLAN offloading caps once after VFR (git-fixes).\n- iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes).\n- ibmvnic: Do partial reset on login failure (bsc#1233150).\n- ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150).\n- ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150).\n- ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150).\n- ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150).\n- ice: Block switchdev mode when ADQ is active and vice versa (git-fixes).\n- ice: Fix NULL pointer deref during VF reset (git-fixes).\n- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).\n- ice: Fix link_down_on_close message (git-fixes).\n- ice: Fix netif_is_ice() in Safe Mode (git-fixes).\n- ice: Interpret .set_channels() input differently (git-fixes).\n- ice: Shut down VSI with \u0027link-down-on-close\u0027 enabled (git-fixes).\n- ice: avoid executing commands on other ports when driving sync (git-fixes).\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: fix ICE_LAST_OFFSET formula (git-fixes).\n- ice: fix VLAN replay after reset (git-fixes).\n- ice: fix accounting for filters shared by multiple VSIs (git-fixes).\n- ice: fix accounting if a VLAN already exists (git-fixes).\n- ice: fix over-shifted variable (git-fixes).\n- ice: fix receive buffer size miscalculation (git-fixes).\n- ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes).\n- ice: reset first in crash dump kernels (git-fixes).\n- ice: respect netif readiness in AF_XDP ZC related ndo\u0027s (git-fixes).\n- ice: tc: allow zero flags in parsing tc flower (git-fixes).\n- ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes).\n- idpf: Interpret .set_channels() input differently (git-fixes).\n- idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes).\n- idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes).\n- idpf: disable local BH when scheduling napi for marker packets (git-fixes).\n- idpf: distinguish vports by the dev_port attribute (git-fixes).\n- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).\n- idpf: fix UAFs when destroying the queues (git-fixes).\n- idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes).\n- idpf: fix memleak in vport interrupt configuration (git-fixes).\n- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).\n- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).\n- igb: Fix missing time sync events (git-fixes).\n- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).\n- igb: extend PTP timestamp adjustments to i211 (git-fixes).\n- igc: Check VLAN EtherType mask (git-fixes).\n- igc: Check VLAN TCI mask (git-fixes).\n- igc: Fix hicredit calculation (git-fixes).\n- igc: Fix missing time sync events (git-fixes).\n- igc: Remove temporary workaround (git-fixes).\n- igc: Report VLAN EtherType matching back to user (git-fixes).\n- igc: Unlock on error in igc_io_resume() (git-fixes).\n- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).\n- iio: adc: ad7606: Fix typo in the driver name (git-fixes).\n- iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes).\n- iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes).\n- iio: light: veml6030: fix microlux value calculation (git-fixes).\n- initramfs: avoid filename buffer overrun (bsc#1232436).\n- input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes).\n- input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes).\n- input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes).\n- input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes).\n- input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes).\n- irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes).\n- irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes).\n- ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes).\n- ixgbe: fix crash with empty VF macvlan list (git-fixes).\n- ixgbe: fix timestamp configuration code (git-fixes).\n- ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes).\n- kABI: Restore exported __arm_smccc_sve_check (git-fixes)\n- kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644).\n- kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes)\n- kexec: fix a memory leak in crash_shrink_memory() (git-fixes).\n- kvm: PPC: Book3S HV: remove unused varible (bsc#1194869).\n- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).\n- media: adv7604: prevent underflow condition when reporting colorspace (git-fixes).\n- media: cx24116: prevent overflows on SNR calculus (git-fixes).\n- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes).\n- media: dvb-usb-v2: af9035: fix missing unlock (git-fixes).\n- media: dvb_frontend: do not play tricks with underflow values (git-fixes).\n- media: dvbdev: prevent the risk of out of memory access (git-fixes).\n- media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes).\n- media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes).\n- media: stb0899_algo: initialize cfr before using it (git-fixes).\n- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes).\n- media: v4l2-tpg: prevent the risk of a division by zero (git-fixes).\n- mei: use kvmalloc for read buffer (git-fixes).\n- misc: apds990x: Fix missing pm_runtime_disable() (git-fixes).\n- mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012).\n- mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646).\n- modpost: remove incorrect code in do_eisa_entry() (git-fixes).\n- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).\n- net/mlx5: Added cond_resched() to crdump collection (git-fixes).\n- net/mlx5: Allow 0 for total host VFs (git-fixes).\n- net/mlx5: Correctly compare pkt reformat ids (git-fixes).\n- net/mlx5: DR, Can\u0027t go to uplink vport on RX rule (git-fixes).\n- net/mlx5: DR, Use the right GVMI number for drop action (git-fixes).\n- net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes).\n- net/mlx5: Drain health before unregistering devlink (git-fixes).\n- net/mlx5: E-switch, register event handler before arming the event (git-fixes).\n- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).\n- net/mlx5: Fix fw tracer first block check (git-fixes).\n- net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes).\n- net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes).\n- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).\n- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).\n- net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes).\n- net/mlx5: Skip clock update work when device is in error state (git-fixes).\n- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).\n- net/mlx5: Update the list of the PCI supported devices (git-fixes).\n- net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes).\n- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes).\n- net/mlx5: Use recovery timeout on sync reset flow (git-fixes).\n- net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes).\n- net/mlx5: fs, lock FTE when checking if active (git-fixes).\n- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).\n- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).\n- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).\n- net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes).\n- net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes).\n- net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes).\n- net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes).\n- net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes).\n- net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes).\n- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).\n- net/mlx5e: Do not offload internal port if filter device is out device (git-fixes).\n- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).\n- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).\n- net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes).\n- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).\n- net/mlx5e: Fix pedit endianness (git-fixes).\n- net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes).\n- net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes).\n- net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes).\n- net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes).\n- net/mlx5e: Reduce the size of icosq_str (git-fixes).\n- net/mlx5e: Take state lock during tx timeout reporter (git-fixes).\n- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).\n- net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes).\n- net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes).\n- net/mlx5e: fix double free of encap_header (git-fixes).\n- net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes).\n- net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes).\n- net: ena: Fix potential sign extension issue (git-fixes).\n- net: ena: Remove ena_select_queue (git-fixes).\n- net: ena: Wrong missing IO completions check order (git-fixes).\n- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).\n- net: relax socket state check at accept time (git-fixes).\n- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes).\n- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes).\n- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes).\n- net: usb: usbnet: fix race in probe failure (git-fixes).\n- nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes).\n- nvme-fabrics: fix kernel crash while shutting down controller (git-fixes).\n- nvme-pci: fix freeing of the HMB descriptor table (git-fixes).\n- nvme-pci: reverse request order in nvme_queue_rqs (git-fixes).\n- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes).\n- pci: Add T_PVPERL macro (git-fixes).\n- pci: Fix reset_method_store() memory leak (git-fixes).\n- pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes).\n- pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes).\n- pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes).\n- pci: keystone: Set mode as Root Complex for \u0027ti,keystone-pcie\u0027 compatible (git-fixes).\n- pci: rockchip-ep: Fix address translation unit programming (git-fixes).\n- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).\n- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes).\n- platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes).\n- platform/x86: dell-sysman: add support for alienware products (stable-fixes).\n- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).\n- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098). \n- power: supply: bq27xxx: Fix registers of bq27426 (git-fixes).\n- power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes).\n- powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869).\n- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).\n- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).\n- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).\n- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).\n- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).\n- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).\n- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).\n- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).\n- powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869).\n- qed: avoid truncating work queue length (git-fixes).\n- rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes)\n- rdma/hns: Add clear_hem return value to log (git-fixes)\n- rdma/hns: Add mutex_destroy() (git-fixes)\n- rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes)\n- rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes)\n- rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes)\n- rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes)\n- rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes)\n- rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes)\n- rdma/hns: Remove unnecessary QP type checks (git-fixes)\n- rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes)\n- rdma/hns: Use macro instead of magic number (git-fixes)\n- rdma/mlx5: Move events notifier registration to be after device registration (git-fixes)\n- rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).\n- rdma/rxe: Fix the qp flush warnings in req (git-fixes)\n- rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes)\n- rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644)\n- rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes).\n- rtc: abx80x: Fix WDT bit position of the status register (git-fixes).\n- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes).\n- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241).\n- scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241).\n- scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241).\n- scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241).\n- scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241).\n- scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241).\n- scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241).\n- scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241).\n- scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241).\n- scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241).\n- scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241).\n- scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes).\n- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes).\n- security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes).\n- serial: 8250: omap: Move pm_runtime_get_sync (git-fixes).\n- sfc: Check firmware supports Ethernet PTP filter (git-fixes).\n- sfc: do not unregister flow_indr if it was never registered (git-fixes).\n- sfc: fix a double-free bug in efx_probe_filters (git-fixes).\n- signal: Replace BUG_ON()s (bsc#1234093).\n- spi: Fix acpi deferred irq probe (git-fixes).\n- spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes).\n- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).\n- thermal: core: Initialize thermal zones before registering them (git-fixes).\n- thermal: intel: int340x: processor: Fix warning during module unload (git-fixes).\n- tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes).\n- tun: Fix xdp_rxq_info\u0027s queue_index when detaching (git-fixes).\n- tun: prevent negative ifindex (git-fixes).\n- ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460).\n- usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes).\n- usb: chaoskey: fail open after removal (git-fixes).\n- usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes).\n- usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes).\n- usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes).\n- usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes).\n- usb: musb: sunxi: Fix accessing an released usb phy (git-fixes).\n- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).\n- usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes).\n- usb: serial: io_edgeport: fix use after free in debug printk (git-fixes).\n- usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes).\n- usb: serial: option: add Quectel RG650V (stable-fixes).\n- usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes).\n- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes).\n- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).\n- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes).\n- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes).\n- usb: yurex: make waiting on yurex_write interruptible (git-fixes).\n- usbip: tools: Fix detach_port() invalid port error path (git-fixes).\n- vdpa/mlx5: preserve CVQ vringh index (git-fixes).\n- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).\n- watchdog: rti: of: honor timeout-sec property (git-fixes).\n- wifi: ath10k: Fix memory leak in management tx (git-fixes).\n- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes).\n- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes).\n- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).\n- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes).\n- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).\n- wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes).\n- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).\n- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes).\n- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).\n- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).\n- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes).\n- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- x86/kvm: fix is_stale_page_fault() (bsc#1221333).\n- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).\n- xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes).\n- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-4315,SUSE-SLE-Micro-5.5-2024-4315,SUSE-SLE-Module-Live-Patching-15-SP5-2024-4315,SUSE-SLE-Module-RT-15-SP5-2024-4315,openSUSE-Leap-Micro-5.5-2024-4315,openSUSE-SLE-15.5-2024-4315",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_4315-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:4315-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20244315-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:4315-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/019997.html"
},
{
"category": "self",
"summary": "SUSE Bug 1082555",
"url": "https://bugzilla.suse.com/1082555"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1218644",
"url": "https://bugzilla.suse.com/1218644"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221309",
"url": "https://bugzilla.suse.com/1221309"
},
{
"category": "self",
"summary": "SUSE Bug 1221333",
"url": "https://bugzilla.suse.com/1221333"
},
{
"category": "self",
"summary": "SUSE Bug 1222364",
"url": "https://bugzilla.suse.com/1222364"
},
{
"category": "self",
"summary": "SUSE Bug 1222590",
"url": "https://bugzilla.suse.com/1222590"
},
{
"category": "self",
"summary": "SUSE Bug 1223202",
"url": "https://bugzilla.suse.com/1223202"
},
{
"category": "self",
"summary": "SUSE Bug 1223656",
"url": "https://bugzilla.suse.com/1223656"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1223919",
"url": "https://bugzilla.suse.com/1223919"
},
{
"category": "self",
"summary": "SUSE Bug 1223942",
"url": "https://bugzilla.suse.com/1223942"
},
{
"category": "self",
"summary": "SUSE Bug 1224518",
"url": "https://bugzilla.suse.com/1224518"
},
{
"category": "self",
"summary": "SUSE Bug 1224526",
"url": "https://bugzilla.suse.com/1224526"
},
{
"category": "self",
"summary": "SUSE Bug 1224574",
"url": "https://bugzilla.suse.com/1224574"
},
{
"category": "self",
"summary": "SUSE Bug 1225725",
"url": "https://bugzilla.suse.com/1225725"
},
{
"category": "self",
"summary": "SUSE Bug 1225730",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "self",
"summary": "SUSE Bug 1225742",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "self",
"summary": "SUSE Bug 1225764",
"url": "https://bugzilla.suse.com/1225764"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1226560",
"url": "https://bugzilla.suse.com/1226560"
},
{
"category": "self",
"summary": "SUSE Bug 1226592",
"url": "https://bugzilla.suse.com/1226592"
},
{
"category": "self",
"summary": "SUSE Bug 1226631",
"url": "https://bugzilla.suse.com/1226631"
},
{
"category": "self",
"summary": "SUSE Bug 1226748",
"url": "https://bugzilla.suse.com/1226748"
},
{
"category": "self",
"summary": "SUSE Bug 1226872",
"url": "https://bugzilla.suse.com/1226872"
},
{
"category": "self",
"summary": "SUSE Bug 1227853",
"url": "https://bugzilla.suse.com/1227853"
},
{
"category": "self",
"summary": "SUSE Bug 1228410",
"url": "https://bugzilla.suse.com/1228410"
},
{
"category": "self",
"summary": "SUSE Bug 1228430",
"url": "https://bugzilla.suse.com/1228430"
},
{
"category": "self",
"summary": "SUSE Bug 1228486",
"url": "https://bugzilla.suse.com/1228486"
},
{
"category": "self",
"summary": "SUSE Bug 1228650",
"url": "https://bugzilla.suse.com/1228650"
},
{
"category": "self",
"summary": "SUSE Bug 1228857",
"url": "https://bugzilla.suse.com/1228857"
},
{
"category": "self",
"summary": "SUSE Bug 1229312",
"url": "https://bugzilla.suse.com/1229312"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229752",
"url": "https://bugzilla.suse.com/1229752"
},
{
"category": "self",
"summary": "SUSE Bug 1229808",
"url": "https://bugzilla.suse.com/1229808"
},
{
"category": "self",
"summary": "SUSE Bug 1230055",
"url": "https://bugzilla.suse.com/1230055"
},
{
"category": "self",
"summary": "SUSE Bug 1230220",
"url": "https://bugzilla.suse.com/1230220"
},
{
"category": "self",
"summary": "SUSE Bug 1230231",
"url": "https://bugzilla.suse.com/1230231"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230558",
"url": "https://bugzilla.suse.com/1230558"
},
{
"category": "self",
"summary": "SUSE Bug 1230827",
"url": "https://bugzilla.suse.com/1230827"
},
{
"category": "self",
"summary": "SUSE Bug 1230918",
"url": "https://bugzilla.suse.com/1230918"
},
{
"category": "self",
"summary": "SUSE Bug 1231083",
"url": "https://bugzilla.suse.com/1231083"
},
{
"category": "self",
"summary": "SUSE Bug 1231089",
"url": "https://bugzilla.suse.com/1231089"
},
{
"category": "self",
"summary": "SUSE Bug 1231098",
"url": "https://bugzilla.suse.com/1231098"
},
{
"category": "self",
"summary": "SUSE Bug 1231101",
"url": "https://bugzilla.suse.com/1231101"
},
{
"category": "self",
"summary": "SUSE Bug 1231108",
"url": "https://bugzilla.suse.com/1231108"
},
{
"category": "self",
"summary": "SUSE Bug 1231111",
"url": "https://bugzilla.suse.com/1231111"
},
{
"category": "self",
"summary": "SUSE Bug 1231132",
"url": "https://bugzilla.suse.com/1231132"
},
{
"category": "self",
"summary": "SUSE Bug 1231135",
"url": "https://bugzilla.suse.com/1231135"
},
{
"category": "self",
"summary": "SUSE Bug 1231138",
"url": "https://bugzilla.suse.com/1231138"
},
{
"category": "self",
"summary": "SUSE Bug 1231169",
"url": "https://bugzilla.suse.com/1231169"
},
{
"category": "self",
"summary": "SUSE Bug 1231178",
"url": "https://bugzilla.suse.com/1231178"
},
{
"category": "self",
"summary": "SUSE Bug 1231180",
"url": "https://bugzilla.suse.com/1231180"
},
{
"category": "self",
"summary": "SUSE Bug 1231181",
"url": "https://bugzilla.suse.com/1231181"
},
{
"category": "self",
"summary": "SUSE Bug 1231187",
"url": "https://bugzilla.suse.com/1231187"
},
{
"category": "self",
"summary": "SUSE Bug 1231202",
"url": "https://bugzilla.suse.com/1231202"
},
{
"category": "self",
"summary": "SUSE Bug 1231434",
"url": "https://bugzilla.suse.com/1231434"
},
{
"category": "self",
"summary": "SUSE Bug 1231441",
"url": "https://bugzilla.suse.com/1231441"
},
{
"category": "self",
"summary": "SUSE Bug 1231452",
"url": "https://bugzilla.suse.com/1231452"
},
{
"category": "self",
"summary": "SUSE Bug 1231465",
"url": "https://bugzilla.suse.com/1231465"
},
{
"category": "self",
"summary": "SUSE Bug 1231474",
"url": "https://bugzilla.suse.com/1231474"
},
{
"category": "self",
"summary": "SUSE Bug 1231481",
"url": "https://bugzilla.suse.com/1231481"
},
{
"category": "self",
"summary": "SUSE Bug 1231537",
"url": "https://bugzilla.suse.com/1231537"
},
{
"category": "self",
"summary": "SUSE Bug 1231541",
"url": "https://bugzilla.suse.com/1231541"
},
{
"category": "self",
"summary": "SUSE Bug 1231646",
"url": "https://bugzilla.suse.com/1231646"
},
{
"category": "self",
"summary": "SUSE Bug 1231849",
"url": "https://bugzilla.suse.com/1231849"
},
{
"category": "self",
"summary": "SUSE Bug 1231856",
"url": "https://bugzilla.suse.com/1231856"
},
{
"category": "self",
"summary": "SUSE Bug 1231858",
"url": "https://bugzilla.suse.com/1231858"
},
{
"category": "self",
"summary": "SUSE Bug 1231859",
"url": "https://bugzilla.suse.com/1231859"
},
{
"category": "self",
"summary": "SUSE Bug 1231864",
"url": "https://bugzilla.suse.com/1231864"
},
{
"category": "self",
"summary": "SUSE Bug 1231904",
"url": "https://bugzilla.suse.com/1231904"
},
{
"category": "self",
"summary": "SUSE Bug 1231916",
"url": "https://bugzilla.suse.com/1231916"
},
{
"category": "self",
"summary": "SUSE Bug 1231920",
"url": "https://bugzilla.suse.com/1231920"
},
{
"category": "self",
"summary": "SUSE Bug 1231923",
"url": "https://bugzilla.suse.com/1231923"
},
{
"category": "self",
"summary": "SUSE Bug 1231930",
"url": "https://bugzilla.suse.com/1231930"
},
{
"category": "self",
"summary": "SUSE Bug 1231931",
"url": "https://bugzilla.suse.com/1231931"
},
{
"category": "self",
"summary": "SUSE Bug 1231947",
"url": "https://bugzilla.suse.com/1231947"
},
{
"category": "self",
"summary": "SUSE Bug 1231952",
"url": "https://bugzilla.suse.com/1231952"
},
{
"category": "self",
"summary": "SUSE Bug 1231953",
"url": "https://bugzilla.suse.com/1231953"
},
{
"category": "self",
"summary": "SUSE Bug 1231959",
"url": "https://bugzilla.suse.com/1231959"
},
{
"category": "self",
"summary": "SUSE Bug 1231978",
"url": "https://bugzilla.suse.com/1231978"
},
{
"category": "self",
"summary": "SUSE Bug 1232013",
"url": "https://bugzilla.suse.com/1232013"
},
{
"category": "self",
"summary": "SUSE Bug 1232015",
"url": "https://bugzilla.suse.com/1232015"
},
{
"category": "self",
"summary": "SUSE Bug 1232016",
"url": "https://bugzilla.suse.com/1232016"
},
{
"category": "self",
"summary": "SUSE Bug 1232017",
"url": "https://bugzilla.suse.com/1232017"
},
{
"category": "self",
"summary": "SUSE Bug 1232027",
"url": "https://bugzilla.suse.com/1232027"
},
{
"category": "self",
"summary": "SUSE Bug 1232028",
"url": "https://bugzilla.suse.com/1232028"
},
{
"category": "self",
"summary": "SUSE Bug 1232047",
"url": "https://bugzilla.suse.com/1232047"
},
{
"category": "self",
"summary": "SUSE Bug 1232048",
"url": "https://bugzilla.suse.com/1232048"
},
{
"category": "self",
"summary": "SUSE Bug 1232050",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "self",
"summary": "SUSE Bug 1232056",
"url": "https://bugzilla.suse.com/1232056"
},
{
"category": "self",
"summary": "SUSE Bug 1232076",
"url": "https://bugzilla.suse.com/1232076"
},
{
"category": "self",
"summary": "SUSE Bug 1232080",
"url": "https://bugzilla.suse.com/1232080"
},
{
"category": "self",
"summary": "SUSE Bug 1232094",
"url": "https://bugzilla.suse.com/1232094"
},
{
"category": "self",
"summary": "SUSE Bug 1232096",
"url": "https://bugzilla.suse.com/1232096"
},
{
"category": "self",
"summary": "SUSE Bug 1232098",
"url": "https://bugzilla.suse.com/1232098"
},
{
"category": "self",
"summary": "SUSE Bug 1232111",
"url": "https://bugzilla.suse.com/1232111"
},
{
"category": "self",
"summary": "SUSE Bug 1232126",
"url": "https://bugzilla.suse.com/1232126"
},
{
"category": "self",
"summary": "SUSE Bug 1232134",
"url": "https://bugzilla.suse.com/1232134"
},
{
"category": "self",
"summary": "SUSE Bug 1232135",
"url": "https://bugzilla.suse.com/1232135"
},
{
"category": "self",
"summary": "SUSE Bug 1232141",
"url": "https://bugzilla.suse.com/1232141"
},
{
"category": "self",
"summary": "SUSE Bug 1232142",
"url": "https://bugzilla.suse.com/1232142"
},
{
"category": "self",
"summary": "SUSE Bug 1232147",
"url": "https://bugzilla.suse.com/1232147"
},
{
"category": "self",
"summary": "SUSE Bug 1232152",
"url": "https://bugzilla.suse.com/1232152"
},
{
"category": "self",
"summary": "SUSE Bug 1232159",
"url": "https://bugzilla.suse.com/1232159"
},
{
"category": "self",
"summary": "SUSE Bug 1232162",
"url": "https://bugzilla.suse.com/1232162"
},
{
"category": "self",
"summary": "SUSE Bug 1232165",
"url": "https://bugzilla.suse.com/1232165"
},
{
"category": "self",
"summary": "SUSE Bug 1232180",
"url": "https://bugzilla.suse.com/1232180"
},
{
"category": "self",
"summary": "SUSE Bug 1232185",
"url": "https://bugzilla.suse.com/1232185"
},
{
"category": "self",
"summary": "SUSE Bug 1232187",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "self",
"summary": "SUSE Bug 1232189",
"url": "https://bugzilla.suse.com/1232189"
},
{
"category": "self",
"summary": "SUSE Bug 1232195",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232218",
"url": "https://bugzilla.suse.com/1232218"
},
{
"category": "self",
"summary": "SUSE Bug 1232224",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "self",
"summary": "SUSE Bug 1232232",
"url": "https://bugzilla.suse.com/1232232"
},
{
"category": "self",
"summary": "SUSE Bug 1232254",
"url": "https://bugzilla.suse.com/1232254"
},
{
"category": "self",
"summary": "SUSE Bug 1232255",
"url": "https://bugzilla.suse.com/1232255"
},
{
"category": "self",
"summary": "SUSE Bug 1232264",
"url": "https://bugzilla.suse.com/1232264"
},
{
"category": "self",
"summary": "SUSE Bug 1232272",
"url": "https://bugzilla.suse.com/1232272"
},
{
"category": "self",
"summary": "SUSE Bug 1232279",
"url": "https://bugzilla.suse.com/1232279"
},
{
"category": "self",
"summary": "SUSE Bug 1232287",
"url": "https://bugzilla.suse.com/1232287"
},
{
"category": "self",
"summary": "SUSE Bug 1232293",
"url": "https://bugzilla.suse.com/1232293"
},
{
"category": "self",
"summary": "SUSE Bug 1232312",
"url": "https://bugzilla.suse.com/1232312"
},
{
"category": "self",
"summary": "SUSE Bug 1232317",
"url": "https://bugzilla.suse.com/1232317"
},
{
"category": "self",
"summary": "SUSE Bug 1232318",
"url": "https://bugzilla.suse.com/1232318"
},
{
"category": "self",
"summary": "SUSE Bug 1232333",
"url": "https://bugzilla.suse.com/1232333"
},
{
"category": "self",
"summary": "SUSE Bug 1232334",
"url": "https://bugzilla.suse.com/1232334"
},
{
"category": "self",
"summary": "SUSE Bug 1232335",
"url": "https://bugzilla.suse.com/1232335"
},
{
"category": "self",
"summary": "SUSE Bug 1232339",
"url": "https://bugzilla.suse.com/1232339"
},
{
"category": "self",
"summary": "SUSE Bug 1232349",
"url": "https://bugzilla.suse.com/1232349"
},
{
"category": "self",
"summary": "SUSE Bug 1232357",
"url": "https://bugzilla.suse.com/1232357"
},
{
"category": "self",
"summary": "SUSE Bug 1232359",
"url": "https://bugzilla.suse.com/1232359"
},
{
"category": "self",
"summary": "SUSE Bug 1232362",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "self",
"summary": "SUSE Bug 1232364",
"url": "https://bugzilla.suse.com/1232364"
},
{
"category": "self",
"summary": "SUSE Bug 1232370",
"url": "https://bugzilla.suse.com/1232370"
},
{
"category": "self",
"summary": "SUSE Bug 1232371",
"url": "https://bugzilla.suse.com/1232371"
},
{
"category": "self",
"summary": "SUSE Bug 1232378",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "self",
"summary": "SUSE Bug 1232385",
"url": "https://bugzilla.suse.com/1232385"
},
{
"category": "self",
"summary": "SUSE Bug 1232387",
"url": "https://bugzilla.suse.com/1232387"
},
{
"category": "self",
"summary": "SUSE Bug 1232394",
"url": "https://bugzilla.suse.com/1232394"
},
{
"category": "self",
"summary": "SUSE Bug 1232413",
"url": "https://bugzilla.suse.com/1232413"
},
{
"category": "self",
"summary": "SUSE Bug 1232416",
"url": "https://bugzilla.suse.com/1232416"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232483",
"url": "https://bugzilla.suse.com/1232483"
},
{
"category": "self",
"summary": "SUSE Bug 1232500",
"url": "https://bugzilla.suse.com/1232500"
},
{
"category": "self",
"summary": "SUSE Bug 1232503",
"url": "https://bugzilla.suse.com/1232503"
},
{
"category": "self",
"summary": "SUSE Bug 1232504",
"url": "https://bugzilla.suse.com/1232504"
},
{
"category": "self",
"summary": "SUSE Bug 1232507",
"url": "https://bugzilla.suse.com/1232507"
},
{
"category": "self",
"summary": "SUSE Bug 1232520",
"url": "https://bugzilla.suse.com/1232520"
},
{
"category": "self",
"summary": "SUSE Bug 1232552",
"url": "https://bugzilla.suse.com/1232552"
},
{
"category": "self",
"summary": "SUSE Bug 1232757",
"url": "https://bugzilla.suse.com/1232757"
},
{
"category": "self",
"summary": "SUSE Bug 1232819",
"url": "https://bugzilla.suse.com/1232819"
},
{
"category": "self",
"summary": "SUSE Bug 1232860",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "self",
"summary": "SUSE Bug 1232870",
"url": "https://bugzilla.suse.com/1232870"
},
{
"category": "self",
"summary": "SUSE Bug 1232873",
"url": "https://bugzilla.suse.com/1232873"
},
{
"category": "self",
"summary": "SUSE Bug 1232877",
"url": "https://bugzilla.suse.com/1232877"
},
{
"category": "self",
"summary": "SUSE Bug 1232878",
"url": "https://bugzilla.suse.com/1232878"
},
{
"category": "self",
"summary": "SUSE Bug 1232881",
"url": "https://bugzilla.suse.com/1232881"
},
{
"category": "self",
"summary": "SUSE Bug 1232884",
"url": "https://bugzilla.suse.com/1232884"
},
{
"category": "self",
"summary": "SUSE Bug 1232885",
"url": "https://bugzilla.suse.com/1232885"
},
{
"category": "self",
"summary": "SUSE Bug 1232887",
"url": "https://bugzilla.suse.com/1232887"
},
{
"category": "self",
"summary": "SUSE Bug 1232888",
"url": "https://bugzilla.suse.com/1232888"
},
{
"category": "self",
"summary": "SUSE Bug 1232890",
"url": "https://bugzilla.suse.com/1232890"
},
{
"category": "self",
"summary": "SUSE Bug 1232892",
"url": "https://bugzilla.suse.com/1232892"
},
{
"category": "self",
"summary": "SUSE Bug 1232896",
"url": "https://bugzilla.suse.com/1232896"
},
{
"category": "self",
"summary": "SUSE Bug 1232897",
"url": "https://bugzilla.suse.com/1232897"
},
{
"category": "self",
"summary": "SUSE Bug 1232905",
"url": "https://bugzilla.suse.com/1232905"
},
{
"category": "self",
"summary": "SUSE Bug 1232907",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "self",
"summary": "SUSE Bug 1232919",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "self",
"summary": "SUSE Bug 1232926",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "self",
"summary": "SUSE Bug 1232928",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "self",
"summary": "SUSE Bug 1232935",
"url": "https://bugzilla.suse.com/1232935"
},
{
"category": "self",
"summary": "SUSE Bug 1233035",
"url": "https://bugzilla.suse.com/1233035"
},
{
"category": "self",
"summary": "SUSE Bug 1233049",
"url": "https://bugzilla.suse.com/1233049"
},
{
"category": "self",
"summary": "SUSE Bug 1233051",
"url": "https://bugzilla.suse.com/1233051"
},
{
"category": "self",
"summary": "SUSE Bug 1233056",
"url": "https://bugzilla.suse.com/1233056"
},
{
"category": "self",
"summary": "SUSE Bug 1233057",
"url": "https://bugzilla.suse.com/1233057"
},
{
"category": "self",
"summary": "SUSE Bug 1233061",
"url": "https://bugzilla.suse.com/1233061"
},
{
"category": "self",
"summary": "SUSE Bug 1233063",
"url": "https://bugzilla.suse.com/1233063"
},
{
"category": "self",
"summary": "SUSE Bug 1233065",
"url": "https://bugzilla.suse.com/1233065"
},
{
"category": "self",
"summary": "SUSE Bug 1233067",
"url": "https://bugzilla.suse.com/1233067"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233073",
"url": "https://bugzilla.suse.com/1233073"
},
{
"category": "self",
"summary": "SUSE Bug 1233074",
"url": "https://bugzilla.suse.com/1233074"
},
{
"category": "self",
"summary": "SUSE Bug 1233100",
"url": "https://bugzilla.suse.com/1233100"
},
{
"category": "self",
"summary": "SUSE Bug 1233103",
"url": "https://bugzilla.suse.com/1233103"
},
{
"category": "self",
"summary": "SUSE Bug 1233104",
"url": "https://bugzilla.suse.com/1233104"
},
{
"category": "self",
"summary": "SUSE Bug 1233105",
"url": "https://bugzilla.suse.com/1233105"
},
{
"category": "self",
"summary": "SUSE Bug 1233106",
"url": "https://bugzilla.suse.com/1233106"
},
{
"category": "self",
"summary": "SUSE Bug 1233107",
"url": "https://bugzilla.suse.com/1233107"
},
{
"category": "self",
"summary": "SUSE Bug 1233108",
"url": "https://bugzilla.suse.com/1233108"
},
{
"category": "self",
"summary": "SUSE Bug 1233110",
"url": "https://bugzilla.suse.com/1233110"
},
{
"category": "self",
"summary": "SUSE Bug 1233111",
"url": "https://bugzilla.suse.com/1233111"
},
{
"category": "self",
"summary": "SUSE Bug 1233113",
"url": "https://bugzilla.suse.com/1233113"
},
{
"category": "self",
"summary": "SUSE Bug 1233114",
"url": "https://bugzilla.suse.com/1233114"
},
{
"category": "self",
"summary": "SUSE Bug 1233117",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "self",
"summary": "SUSE Bug 1233123",
"url": "https://bugzilla.suse.com/1233123"
},
{
"category": "self",
"summary": "SUSE Bug 1233125",
"url": "https://bugzilla.suse.com/1233125"
},
{
"category": "self",
"summary": "SUSE Bug 1233129",
"url": "https://bugzilla.suse.com/1233129"
},
{
"category": "self",
"summary": "SUSE Bug 1233130",
"url": "https://bugzilla.suse.com/1233130"
},
{
"category": "self",
"summary": "SUSE Bug 1233134",
"url": "https://bugzilla.suse.com/1233134"
},
{
"category": "self",
"summary": "SUSE Bug 1233135",
"url": "https://bugzilla.suse.com/1233135"
},
{
"category": "self",
"summary": "SUSE Bug 1233150",
"url": "https://bugzilla.suse.com/1233150"
},
{
"category": "self",
"summary": "SUSE Bug 1233189",
"url": "https://bugzilla.suse.com/1233189"
},
{
"category": "self",
"summary": "SUSE Bug 1233191",
"url": "https://bugzilla.suse.com/1233191"
},
{
"category": "self",
"summary": "SUSE Bug 1233197",
"url": "https://bugzilla.suse.com/1233197"
},
{
"category": "self",
"summary": "SUSE Bug 1233205",
"url": "https://bugzilla.suse.com/1233205"
},
{
"category": "self",
"summary": "SUSE Bug 1233206",
"url": "https://bugzilla.suse.com/1233206"
},
{
"category": "self",
"summary": "SUSE Bug 1233209",
"url": "https://bugzilla.suse.com/1233209"
},
{
"category": "self",
"summary": "SUSE Bug 1233210",
"url": "https://bugzilla.suse.com/1233210"
},
{
"category": "self",
"summary": "SUSE Bug 1233211",
"url": "https://bugzilla.suse.com/1233211"
},
{
"category": "self",
"summary": "SUSE Bug 1233212",
"url": "https://bugzilla.suse.com/1233212"
},
{
"category": "self",
"summary": "SUSE Bug 1233214",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "self",
"summary": "SUSE Bug 1233216",
"url": "https://bugzilla.suse.com/1233216"
},
{
"category": "self",
"summary": "SUSE Bug 1233238",
"url": "https://bugzilla.suse.com/1233238"
},
{
"category": "self",
"summary": "SUSE Bug 1233241",
"url": "https://bugzilla.suse.com/1233241"
},
{
"category": "self",
"summary": "SUSE Bug 1233253",
"url": "https://bugzilla.suse.com/1233253"
},
{
"category": "self",
"summary": "SUSE Bug 1233255",
"url": "https://bugzilla.suse.com/1233255"
},
{
"category": "self",
"summary": "SUSE Bug 1233293",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "self",
"summary": "SUSE Bug 1233350",
"url": "https://bugzilla.suse.com/1233350"
},
{
"category": "self",
"summary": "SUSE Bug 1233452",
"url": "https://bugzilla.suse.com/1233452"
},
{
"category": "self",
"summary": "SUSE Bug 1233453",
"url": "https://bugzilla.suse.com/1233453"
},
{
"category": "self",
"summary": "SUSE Bug 1233454",
"url": "https://bugzilla.suse.com/1233454"
},
{
"category": "self",
"summary": "SUSE Bug 1233456",
"url": "https://bugzilla.suse.com/1233456"
},
{
"category": "self",
"summary": "SUSE Bug 1233457",
"url": "https://bugzilla.suse.com/1233457"
},
{
"category": "self",
"summary": "SUSE Bug 1233458",
"url": "https://bugzilla.suse.com/1233458"
},
{
"category": "self",
"summary": "SUSE Bug 1233460",
"url": "https://bugzilla.suse.com/1233460"
},
{
"category": "self",
"summary": "SUSE Bug 1233462",
"url": "https://bugzilla.suse.com/1233462"
},
{
"category": "self",
"summary": "SUSE Bug 1233463",
"url": "https://bugzilla.suse.com/1233463"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233471",
"url": "https://bugzilla.suse.com/1233471"
},
{
"category": "self",
"summary": "SUSE Bug 1233476",
"url": "https://bugzilla.suse.com/1233476"
},
{
"category": "self",
"summary": "SUSE Bug 1233478",
"url": "https://bugzilla.suse.com/1233478"
},
{
"category": "self",
"summary": "SUSE Bug 1233479",
"url": "https://bugzilla.suse.com/1233479"
},
{
"category": "self",
"summary": "SUSE Bug 1233481",
"url": "https://bugzilla.suse.com/1233481"
},
{
"category": "self",
"summary": "SUSE Bug 1233484",
"url": "https://bugzilla.suse.com/1233484"
},
{
"category": "self",
"summary": "SUSE Bug 1233487",
"url": "https://bugzilla.suse.com/1233487"
},
{
"category": "self",
"summary": "SUSE Bug 1233490",
"url": "https://bugzilla.suse.com/1233490"
},
{
"category": "self",
"summary": "SUSE Bug 1233491",
"url": "https://bugzilla.suse.com/1233491"
},
{
"category": "self",
"summary": "SUSE Bug 1233528",
"url": "https://bugzilla.suse.com/1233528"
},
{
"category": "self",
"summary": "SUSE Bug 1233548",
"url": "https://bugzilla.suse.com/1233548"
},
{
"category": "self",
"summary": "SUSE Bug 1233552",
"url": "https://bugzilla.suse.com/1233552"
},
{
"category": "self",
"summary": "SUSE Bug 1233553",
"url": "https://bugzilla.suse.com/1233553"
},
{
"category": "self",
"summary": "SUSE Bug 1233554",
"url": "https://bugzilla.suse.com/1233554"
},
{
"category": "self",
"summary": "SUSE Bug 1233555",
"url": "https://bugzilla.suse.com/1233555"
},
{
"category": "self",
"summary": "SUSE Bug 1233557",
"url": "https://bugzilla.suse.com/1233557"
},
{
"category": "self",
"summary": "SUSE Bug 1233560",
"url": "https://bugzilla.suse.com/1233560"
},
{
"category": "self",
"summary": "SUSE Bug 1233561",
"url": "https://bugzilla.suse.com/1233561"
},
{
"category": "self",
"summary": "SUSE Bug 1233570",
"url": "https://bugzilla.suse.com/1233570"
},
{
"category": "self",
"summary": "SUSE Bug 1233577",
"url": "https://bugzilla.suse.com/1233577"
},
{
"category": "self",
"summary": "SUSE Bug 1233580",
"url": "https://bugzilla.suse.com/1233580"
},
{
"category": "self",
"summary": "SUSE Bug 1233977",
"url": "https://bugzilla.suse.com/1233977"
},
{
"category": "self",
"summary": "SUSE Bug 1234012",
"url": "https://bugzilla.suse.com/1234012"
},
{
"category": "self",
"summary": "SUSE Bug 1234025",
"url": "https://bugzilla.suse.com/1234025"
},
{
"category": "self",
"summary": "SUSE Bug 1234085",
"url": "https://bugzilla.suse.com/1234085"
},
{
"category": "self",
"summary": "SUSE Bug 1234093",
"url": "https://bugzilla.suse.com/1234093"
},
{
"category": "self",
"summary": "SUSE Bug 1234098",
"url": "https://bugzilla.suse.com/1234098"
},
{
"category": "self",
"summary": "SUSE Bug 1234108",
"url": "https://bugzilla.suse.com/1234108"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47594 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48674 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48979 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48982 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48983 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48989 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48990 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52917 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52918 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52922 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26782 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35980 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36484 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36484/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41049 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43817 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46800 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46807 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46810 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46812 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46819 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46821 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46842 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46859 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46864 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47669 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47671 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47682 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47696 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47697 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47699 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47713 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47718 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47718/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49852 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49877 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49902 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49968 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49981 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50044 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50044/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50073 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50074 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50077 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50078 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50082 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50089 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50093 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50096 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50098 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50108 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50115 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50116 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50124 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50124/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50128 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50135 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50138 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50147 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50153 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50167 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50182 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50183 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50184 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50186 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50189 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50192 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50205 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50218 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50249 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50255 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50259 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50261 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50264 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50267 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50268 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50269 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50271 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50273 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50274 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50287 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50289 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50290 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50292 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50295 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50298 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50301 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50302 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53052 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53058 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53059 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53059/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53060 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53061 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53063 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53066 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53068 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53079 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53085 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53088 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53104 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53110/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-12-13T15:23:44Z",
"generator": {
"date": "2024-12-13T15:23:44Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:4315-1",
"initial_release_date": "2024-12-13T15:23:44Z",
"revision_history": [
{
"date": "2024-12-13T15:23:44Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"product": {
"name": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"product_id": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"product": {
"name": "kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"product_id": "kernel-source-rt-5.14.21-150500.13.79.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-extra-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-optional-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"product_id": "reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Real Time Module 15 SP5",
"product": {
"name": "SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-rt:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.5",
"product": {
"name": "openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150500.13.79.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch"
},
"product_reference": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150500.13.79.1.noarch as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of SUSE Real Time Module 15 SP5",
"product_id": "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch"
},
"product_reference": "kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-extra-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-optional-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150500.13.79.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64"
},
"product_reference": "reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: never allow the PM to close a listener subflow\n\nCurrently, when deleting an endpoint the netlink PM treverses\nall the local MPTCP sockets, regardless of their status.\n\nIf an MPTCP listener socket is bound to the IP matching the\ndelete endpoint, the listener TCP socket will be closed.\nThat is unexpected, the PM should only affect data subflows.\n\nAdditionally, syzbot was able to trigger a NULL ptr dereference\ndue to the above:\n\ngeneral protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]\nCPU: 1 PID: 6550 Comm: syz-executor122 Not tainted 5.16.0-rc4-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nRIP: 0010:__lock_acquire+0xd7d/0x54a0 kernel/locking/lockdep.c:4897\nCode: 0f 0e 41 be 01 00 00 00 0f 86 c8 00 00 00 89 05 69 cc 0f 0e e9 bd 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 \u003c80\u003e 3c 02 00 0f 85 f3 2f 00 00 48 81 3b 20 75 17 8f 0f 84 52 f3 ff\nRSP: 0018:ffffc90001f2f818 EFLAGS: 00010016\nRAX: dffffc0000000000 RBX: 0000000000000018 RCX: 0000000000000000\nRDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001\nR10: 0000000000000000 R11: 000000000000000a R12: 0000000000000000\nR13: ffff88801b98d700 R14: 0000000000000000 R15: 0000000000000001\nFS: 00007f177cd3d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f177cd1b268 CR3: 000000001dd55000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n lock_acquire kernel/locking/lockdep.c:5637 [inline]\n lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5602\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0x39/0x50 kernel/locking/spinlock.c:162\n finish_wait+0xc0/0x270 kernel/sched/wait.c:400\n inet_csk_wait_for_connect net/ipv4/inet_connection_sock.c:464 [inline]\n inet_csk_accept+0x7de/0x9d0 net/ipv4/inet_connection_sock.c:497\n mptcp_accept+0xe5/0x500 net/mptcp/protocol.c:2865\n inet_accept+0xe4/0x7b0 net/ipv4/af_inet.c:739\n mptcp_stream_accept+0x2e7/0x10e0 net/mptcp/protocol.c:3345\n do_accept+0x382/0x510 net/socket.c:1773\n __sys_accept4_file+0x7e/0xe0 net/socket.c:1816\n __sys_accept4+0xb0/0x100 net/socket.c:1846\n __do_sys_accept net/socket.c:1864 [inline]\n __se_sys_accept net/socket.c:1861 [inline]\n __x64_sys_accept+0x71/0xb0 net/socket.c:1861\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f177cd8b8e9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f177cd3d308 EFLAGS: 00000246 ORIG_RAX: 000000000000002b\nRAX: ffffffffffffffda RBX: 00007f177ce13408 RCX: 00007f177cd8b8e9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003\nRBP: 00007f177ce13400 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 00007f177ce1340c\nR13: 00007f177cde1004 R14: 6d705f706374706d R15: 0000000000022000\n \u003c/TASK\u003e\n\nFix the issue explicitly skipping MPTCP socket in TCP_LISTEN\nstatus.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47594",
"url": "https://www.suse.com/security/cve/CVE-2021-47594"
},
{
"category": "external",
"summary": "SUSE Bug 1226560 for CVE-2021-47594",
"url": "https://bugzilla.suse.com/1226560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2021-47594"
},
{
"cve": "CVE-2022-48674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: fix pcluster use-after-free on UP platforms\n\nDuring stress testing with CONFIG_SMP disabled, KASAN reports as below:\n\n==================================================================\nBUG: KASAN: use-after-free in __mutex_lock+0xe5/0xc30\nRead of size 8 at addr ffff8881094223f8 by task stress/7789\n\nCPU: 0 PID: 7789 Comm: stress Not tainted 6.0.0-rc1-00002-g0d53d2e882f9 #3\nHardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011\nCall Trace:\n \u003cTASK\u003e\n..\n __mutex_lock+0xe5/0xc30\n..\n z_erofs_do_read_page+0x8ce/0x1560\n..\n z_erofs_readahead+0x31c/0x580\n..\nFreed by task 7787\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x20/0x30\n kasan_set_free_info+0x20/0x40\n __kasan_slab_free+0x10c/0x190\n kmem_cache_free+0xed/0x380\n rcu_core+0x3d5/0xc90\n __do_softirq+0x12d/0x389\n\nLast potentially related work creation:\n kasan_save_stack+0x1e/0x40\n __kasan_record_aux_stack+0x97/0xb0\n call_rcu+0x3d/0x3f0\n erofs_shrink_workstation+0x11f/0x210\n erofs_shrink_scan+0xdc/0x170\n shrink_slab.constprop.0+0x296/0x530\n drop_slab+0x1c/0x70\n drop_caches_sysctl_handler+0x70/0x80\n proc_sys_call_handler+0x20a/0x2f0\n vfs_write+0x555/0x6c0\n ksys_write+0xbe/0x160\n do_syscall_64+0x3b/0x90\n\nThe root cause is that erofs_workgroup_unfreeze() doesn\u0027t reset to\norig_val thus it causes a race that the pcluster reuses unexpectedly\nbefore freeing.\n\nSince UP platforms are quite rare now, such path becomes unnecessary.\nLet\u0027s drop such specific-designed path directly instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48674",
"url": "https://www.suse.com/security/cve/CVE-2022-48674"
},
{
"category": "external",
"summary": "SUSE Bug 1223942 for CVE-2022-48674",
"url": "https://bugzilla.suse.com/1223942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2022-48674"
},
{
"cve": "CVE-2022-48979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix array index out of bound error in DCN32 DML\n\n[Why\u0026How]\nLinkCapacitySupport array is indexed with the number of voltage states and\nnot the number of max DPPs. Fix the error by changing the array\ndeclaration to use the correct (larger) array size of total number of\nvoltage states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48979",
"url": "https://www.suse.com/security/cve/CVE-2022-48979"
},
{
"category": "external",
"summary": "SUSE Bug 1232293 for CVE-2022-48979",
"url": "https://bugzilla.suse.com/1232293"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2022-48979"
},
{
"cve": "CVE-2022-48982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix crash when replugging CSR fake controllers\n\nIt seems fake CSR 5.0 clones can cause the suspend notifier to be\nregistered twice causing the following kernel panic:\n\n[ 71.986122] Call Trace:\n[ 71.986124] \u003cTASK\u003e\n[ 71.986125] blocking_notifier_chain_register+0x33/0x60\n[ 71.986130] hci_register_dev+0x316/0x3d0 [bluetooth 99b5497ea3d09708fa1366c1dc03288bf3cca8da]\n[ 71.986154] btusb_probe+0x979/0xd85 [btusb e1e0605a4f4c01984a4b9c8ac58c3666ae287477]\n[ 71.986159] ? __pm_runtime_set_status+0x1a9/0x300\n[ 71.986162] ? ktime_get_mono_fast_ns+0x3e/0x90\n[ 71.986167] usb_probe_interface+0xe3/0x2b0\n[ 71.986171] really_probe+0xdb/0x380\n[ 71.986174] ? pm_runtime_barrier+0x54/0x90\n[ 71.986177] __driver_probe_device+0x78/0x170\n[ 71.986180] driver_probe_device+0x1f/0x90\n[ 71.986183] __device_attach_driver+0x89/0x110\n[ 71.986186] ? driver_allows_async_probing+0x70/0x70\n[ 71.986189] bus_for_each_drv+0x8c/0xe0\n[ 71.986192] __device_attach+0xb2/0x1e0\n[ 71.986195] bus_probe_device+0x92/0xb0\n[ 71.986198] device_add+0x422/0x9a0\n[ 71.986201] ? sysfs_merge_group+0xd4/0x110\n[ 71.986205] usb_set_configuration+0x57a/0x820\n[ 71.986208] usb_generic_driver_probe+0x4f/0x70\n[ 71.986211] usb_probe_device+0x3a/0x110\n[ 71.986213] really_probe+0xdb/0x380\n[ 71.986216] ? pm_runtime_barrier+0x54/0x90\n[ 71.986219] __driver_probe_device+0x78/0x170\n[ 71.986221] driver_probe_device+0x1f/0x90\n[ 71.986224] __device_attach_driver+0x89/0x110\n[ 71.986227] ? driver_allows_async_probing+0x70/0x70\n[ 71.986230] bus_for_each_drv+0x8c/0xe0\n[ 71.986232] __device_attach+0xb2/0x1e0\n[ 71.986235] bus_probe_device+0x92/0xb0\n[ 71.986237] device_add+0x422/0x9a0\n[ 71.986239] ? _dev_info+0x7d/0x98\n[ 71.986242] ? blake2s_update+0x4c/0xc0\n[ 71.986246] usb_new_device.cold+0x148/0x36d\n[ 71.986250] hub_event+0xa8a/0x1910\n[ 71.986255] process_one_work+0x1c4/0x380\n[ 71.986259] worker_thread+0x51/0x390\n[ 71.986262] ? rescuer_thread+0x3b0/0x3b0\n[ 71.986264] kthread+0xdb/0x110\n[ 71.986266] ? kthread_complete_and_exit+0x20/0x20\n[ 71.986268] ret_from_fork+0x1f/0x30\n[ 71.986273] \u003c/TASK\u003e\n[ 71.986274] ---[ end trace 0000000000000000 ]---\n[ 71.986284] btusb: probe of 2-1.6:1.0 failed with error -17",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48982",
"url": "https://www.suse.com/security/cve/CVE-2022-48982"
},
{
"category": "external",
"summary": "SUSE Bug 1231978 for CVE-2022-48982",
"url": "https://bugzilla.suse.com/1231978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2022-48982"
},
{
"cve": "CVE-2022-48983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: Fix a null-ptr-deref in io_tctx_exit_cb()\n\nSyzkaller reports a NULL deref bug as follows:\n\n BUG: KASAN: null-ptr-deref in io_tctx_exit_cb+0x53/0xd3\n Read of size 4 at addr 0000000000000138 by task file1/1955\n\n CPU: 1 PID: 1955 Comm: file1 Not tainted 6.1.0-rc7-00103-gef4d3ea40565 #75\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n ? io_tctx_exit_cb+0x53/0xd3\n kasan_report+0xbb/0x1f0\n ? io_tctx_exit_cb+0x53/0xd3\n kasan_check_range+0x140/0x190\n io_tctx_exit_cb+0x53/0xd3\n task_work_run+0x164/0x250\n ? task_work_cancel+0x30/0x30\n get_signal+0x1c3/0x2440\n ? lock_downgrade+0x6e0/0x6e0\n ? lock_downgrade+0x6e0/0x6e0\n ? exit_signals+0x8b0/0x8b0\n ? do_raw_read_unlock+0x3b/0x70\n ? do_raw_spin_unlock+0x50/0x230\n arch_do_signal_or_restart+0x82/0x2470\n ? kmem_cache_free+0x260/0x4b0\n ? putname+0xfe/0x140\n ? get_sigframe_size+0x10/0x10\n ? do_execveat_common.isra.0+0x226/0x710\n ? lockdep_hardirqs_on+0x79/0x100\n ? putname+0xfe/0x140\n ? do_execveat_common.isra.0+0x238/0x710\n exit_to_user_mode_prepare+0x15f/0x250\n syscall_exit_to_user_mode+0x19/0x50\n do_syscall_64+0x42/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n RIP: 0023:0x0\n Code: Unable to access opcode bytes at 0xffffffffffffffd6.\n RSP: 002b:00000000fffb7790 EFLAGS: 00000200 ORIG_RAX: 000000000000000b\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n Kernel panic - not syncing: panic_on_warn set ...\n\nThis happens because the adding of task_work from io_ring_exit_work()\nisn\u0027t synchronized with canceling all work items from eg exec. The\nexecution of the two are ordered in that they are both run by the task\nitself, but if io_tctx_exit_cb() is queued while we\u0027re canceling all\nwork items off exec AND gets executed when the task exits to userspace\nrather than in the main loop in io_uring_cancel_generic(), then we can\nfind current-\u003eio_uring == NULL and hit the above crash.\n\nIt\u0027s safe to add this NULL check here, because the execution of the two\npaths are done by the task itself.\n\n[axboe: add code comment and also put an explanation in the commit msg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48983",
"url": "https://www.suse.com/security/cve/CVE-2022-48983"
},
{
"category": "external",
"summary": "SUSE Bug 1231959 for CVE-2022-48983",
"url": "https://bugzilla.suse.com/1231959"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2022-48983"
},
{
"cve": "CVE-2022-48989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: Fix oops due to race with cookie_lru and use_cookie\n\nIf a cookie expires from the LRU and the LRU_DISCARD flag is set, but\nthe state machine has not run yet, it\u0027s possible another thread can call\nfscache_use_cookie and begin to use it.\n\nWhen the cookie_worker finally runs, it will see the LRU_DISCARD flag\nset, transition the cookie-\u003estate to LRU_DISCARDING, which will then\nwithdraw the cookie. Once the cookie is withdrawn the object is removed\nthe below oops will occur because the object associated with the cookie\nis now NULL.\n\nFix the oops by clearing the LRU_DISCARD bit if another thread uses the\ncookie before the cookie_worker runs.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n ...\n CPU: 31 PID: 44773 Comm: kworker/u130:1 Tainted: G E 6.0.0-5.dneg.x86_64 #1\n Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022\n Workqueue: events_unbound netfs_rreq_write_to_cache_work [netfs]\n RIP: 0010:cachefiles_prepare_write+0x28/0x90 [cachefiles]\n ...\n Call Trace:\n netfs_rreq_write_to_cache_work+0x11c/0x320 [netfs]\n process_one_work+0x217/0x3e0\n worker_thread+0x4a/0x3b0\n kthread+0xd6/0x100",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48989",
"url": "https://www.suse.com/security/cve/CVE-2022-48989"
},
{
"category": "external",
"summary": "SUSE Bug 1232027 for CVE-2022-48989",
"url": "https://bugzilla.suse.com/1232027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2022-48989"
},
{
"cve": "CVE-2022-48990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix use-after-free during gpu recovery\n\n[Why]\n [ 754.862560] refcount_t: underflow; use-after-free.\n [ 754.862898] Call Trace:\n [ 754.862903] \u003cTASK\u003e\n [ 754.862913] amdgpu_job_free_cb+0xc2/0xe1 [amdgpu]\n [ 754.863543] drm_sched_main.cold+0x34/0x39 [amd_sched]\n\n[How]\n The fw_fence may be not init, check whether dma_fence_init\n is performed before job free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48990",
"url": "https://www.suse.com/security/cve/CVE-2022-48990"
},
{
"category": "external",
"summary": "SUSE Bug 1232028 for CVE-2022-48990",
"url": "https://bugzilla.suse.com/1232028"
},
{
"category": "external",
"summary": "SUSE Bug 1232029 for CVE-2022-48990",
"url": "https://bugzilla.suse.com/1232029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2022-48990"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52917"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52917",
"url": "https://www.suse.com/security/cve/CVE-2023-52917"
},
{
"category": "external",
"summary": "SUSE Bug 1231849 for CVE-2023-52917",
"url": "https://bugzilla.suse.com/1231849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2023-52917"
},
{
"cve": "CVE-2023-52918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52918"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pci: cx23885: check cx23885_vdev_init() return\n\ncx23885_vdev_init() can return a NULL pointer, but that pointer\nis used in the next line without a check.\n\nAdd a NULL pointer check and go to the error unwind if it is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52918",
"url": "https://www.suse.com/security/cve/CVE-2023-52918"
},
{
"category": "external",
"summary": "SUSE Bug 1232047 for CVE-2023-52918",
"url": "https://bugzilla.suse.com/1232047"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2023-52918"
},
{
"cve": "CVE-2023-52921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix possible UAF in amdgpu_cs_pass1()\n\nSince the gang_size check is outside of chunk parsing\nloop, we need to reset i before we free the chunk data.\n\nSuggested by Ye Zhang (@VAR10CK) of Baidu Security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52921",
"url": "https://www.suse.com/security/cve/CVE-2023-52921"
},
{
"category": "external",
"summary": "SUSE Bug 1233452 for CVE-2023-52921",
"url": "https://bugzilla.suse.com/1233452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2023-52921"
},
{
"cve": "CVE-2023-52922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Fix UAF in bcm_proc_show()\n\nBUG: KASAN: slab-use-after-free in bcm_proc_show+0x969/0xa80\nRead of size 8 at addr ffff888155846230 by task cat/7862\n\nCPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 #230\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xd5/0x150\n print_report+0xc1/0x5e0\n kasan_report+0xba/0xf0\n bcm_proc_show+0x969/0xa80\n seq_read_iter+0x4f6/0x1260\n seq_read+0x165/0x210\n proc_reg_read+0x227/0x300\n vfs_read+0x1d5/0x8d0\n ksys_read+0x11e/0x240\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAllocated by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_kmalloc+0x9e/0xa0\n bcm_sendmsg+0x264b/0x44e0\n sock_sendmsg+0xda/0x180\n ____sys_sendmsg+0x735/0x920\n ___sys_sendmsg+0x11d/0x1b0\n __sys_sendmsg+0xfa/0x1d0\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n ____kasan_slab_free+0x161/0x1c0\n slab_free_freelist_hook+0x119/0x220\n __kmem_cache_free+0xb4/0x2e0\n rcu_core+0x809/0x1bd0\n\nbcm_op is freed before procfs entry be removed in bcm_release(),\nthis lead to bcm_proc_show() may read the freed bcm_op.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52922",
"url": "https://www.suse.com/security/cve/CVE-2023-52922"
},
{
"category": "external",
"summary": "SUSE Bug 1233977 for CVE-2023-52922",
"url": "https://bugzilla.suse.com/1233977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2023-52922"
},
{
"cve": "CVE-2024-26782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix double-free on socket dismantle\n\nwhen MPTCP server accepts an incoming connection, it clones its listener\nsocket. However, the pointer to \u0027inet_opt\u0027 for the new socket has the same\nvalue as the original one: as a consequence, on program exit it\u0027s possible\nto observe the following splat:\n\n BUG: KASAN: double-free in inet_sock_destruct+0x54f/0x8b0\n Free of addr ffff888485950880 by task swapper/25/0\n\n CPU: 25 PID: 0 Comm: swapper/25 Kdump: loaded Not tainted 6.8.0-rc1+ #609\n Hardware name: Supermicro SYS-6027R-72RF/X9DRH-7TF/7F/iTF/iF, BIOS 3.0 07/26/2013\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x32/0x50\n print_report+0xca/0x620\n kasan_report_invalid_free+0x64/0x90\n __kasan_slab_free+0x1aa/0x1f0\n kfree+0xed/0x2e0\n inet_sock_destruct+0x54f/0x8b0\n __sk_destruct+0x48/0x5b0\n rcu_do_batch+0x34e/0xd90\n rcu_core+0x559/0xac0\n __do_softirq+0x183/0x5a4\n irq_exit_rcu+0x12d/0x170\n sysvec_apic_timer_interrupt+0x6b/0x80\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n RIP: 0010:cpuidle_enter_state+0x175/0x300\n Code: 30 00 0f 84 1f 01 00 00 83 e8 01 83 f8 ff 75 e5 48 83 c4 18 44 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc fb 45 85 ed \u003c0f\u003e 89 60 ff ff ff 48 c1 e5 06 48 c7 43 18 00 00 00 00 48 83 44 2b\n RSP: 0018:ffff888481cf7d90 EFLAGS: 00000202\n RAX: 0000000000000000 RBX: ffff88887facddc8 RCX: 0000000000000000\n RDX: 1ffff1110ff588b1 RSI: 0000000000000019 RDI: ffff88887fac4588\n RBP: 0000000000000004 R08: 0000000000000002 R09: 0000000000043080\n R10: 0009b02ea273363f R11: ffff88887fabf42b R12: ffffffff932592e0\n R13: 0000000000000004 R14: 0000000000000000 R15: 00000022c880ec80\n cpuidle_enter+0x4a/0xa0\n do_idle+0x310/0x410\n cpu_startup_entry+0x51/0x60\n start_secondary+0x211/0x270\n secondary_startup_64_no_verify+0x184/0x18b\n \u003c/TASK\u003e\n\n Allocated by task 6853:\n kasan_save_stack+0x1c/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0xa6/0xb0\n __kmalloc+0x1eb/0x450\n cipso_v4_sock_setattr+0x96/0x360\n netlbl_sock_setattr+0x132/0x1f0\n selinux_netlbl_socket_post_create+0x6c/0x110\n selinux_socket_post_create+0x37b/0x7f0\n security_socket_post_create+0x63/0xb0\n __sock_create+0x305/0x450\n __sys_socket_create.part.23+0xbd/0x130\n __sys_socket+0x37/0xb0\n __x64_sys_socket+0x6f/0xb0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 6858:\n kasan_save_stack+0x1c/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x12c/0x1f0\n kfree+0xed/0x2e0\n inet_sock_destruct+0x54f/0x8b0\n __sk_destruct+0x48/0x5b0\n subflow_ulp_release+0x1f0/0x250\n tcp_cleanup_ulp+0x6e/0x110\n tcp_v4_destroy_sock+0x5a/0x3a0\n inet_csk_destroy_sock+0x135/0x390\n tcp_fin+0x416/0x5c0\n tcp_data_queue+0x1bc8/0x4310\n tcp_rcv_state_process+0x15a3/0x47b0\n tcp_v4_do_rcv+0x2c1/0x990\n tcp_v4_rcv+0x41fb/0x5ed0\n ip_protocol_deliver_rcu+0x6d/0x9f0\n ip_local_deliver_finish+0x278/0x360\n ip_local_deliver+0x182/0x2c0\n ip_rcv+0xb5/0x1c0\n __netif_receive_skb_one_core+0x16e/0x1b0\n process_backlog+0x1e3/0x650\n __napi_poll+0xa6/0x500\n net_rx_action+0x740/0xbb0\n __do_softirq+0x183/0x5a4\n\n The buggy address belongs to the object at ffff888485950880\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes inside of\n 64-byte region [ffff888485950880, ffff8884859508c0)\n\n The buggy address belongs to the physical page:\n page:0000000056d1e95e refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888485950700 pfn:0x485950\n flags: 0x57ffffc0000800(slab|node=1|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0057ffffc0000800 ffff88810004c640 ffffea00121b8ac0 dead000000000006\n raw: ffff888485950700 0000000000200019 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888485950780: fa fb fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26782",
"url": "https://www.suse.com/security/cve/CVE-2024-26782"
},
{
"category": "external",
"summary": "SUSE Bug 1222590 for CVE-2024-26782",
"url": "https://bugzilla.suse.com/1222590"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-26782"
},
{
"cve": "CVE-2024-26906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()\n\nWhen trying to use copy_from_kernel_nofault() to read vsyscall page\nthrough a bpf program, the following oops was reported:\n\n BUG: unable to handle page fault for address: ffffffffff600000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 3231067 P4D 3231067 PUD 3233067 PMD 3235067 PTE 0\n Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 20390 Comm: test_progs ...... 6.7.0+ #58\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996) ......\n RIP: 0010:copy_from_kernel_nofault+0x6f/0x110\n ......\n Call Trace:\n \u003cTASK\u003e\n ? copy_from_kernel_nofault+0x6f/0x110\n bpf_probe_read_kernel+0x1d/0x50\n bpf_prog_2061065e56845f08_do_probe_read+0x51/0x8d\n trace_call_bpf+0xc5/0x1c0\n perf_call_bpf_enter.isra.0+0x69/0xb0\n perf_syscall_enter+0x13e/0x200\n syscall_trace_enter+0x188/0x1c0\n do_syscall_64+0xb5/0xe0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n \u003c/TASK\u003e\n ......\n ---[ end trace 0000000000000000 ]---\n\nThe oops is triggered when:\n\n1) A bpf program uses bpf_probe_read_kernel() to read from the vsyscall\npage and invokes copy_from_kernel_nofault() which in turn calls\n__get_user_asm().\n\n2) Because the vsyscall page address is not readable from kernel space,\na page fault exception is triggered accordingly.\n\n3) handle_page_fault() considers the vsyscall page address as a user\nspace address instead of a kernel space address. This results in the\nfix-up setup by bpf not being applied and a page_fault_oops() is invoked\ndue to SMAP.\n\nConsidering handle_page_fault() has already considered the vsyscall page\naddress as a userspace address, fix the problem by disallowing vsyscall\npage read for copy_from_kernel_nofault().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26906",
"url": "https://www.suse.com/security/cve/CVE-2024-26906"
},
{
"category": "external",
"summary": "SUSE Bug 1223202 for CVE-2024-26906",
"url": "https://bugzilla.suse.com/1223202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-26906"
},
{
"cve": "CVE-2024-26953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: esp: fix bad handling of pages from page_pool\n\nWhen the skb is reorganized during esp_output (!esp-\u003einline), the pages\ncoming from the original skb fragments are supposed to be released back\nto the system through put_page. But if the skb fragment pages are\noriginating from a page_pool, calling put_page on them will trigger a\npage_pool leak which will eventually result in a crash.\n\nThis leak can be easily observed when using CONFIG_DEBUG_VM and doing\nipsec + gre (non offloaded) forwarding:\n\n BUG: Bad page state in process ksoftirqd/16 pfn:1451b6\n page:00000000de2b8d32 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1451b6000 pfn:0x1451b6\n flags: 0x200000000000000(node=0|zone=2)\n page_type: 0xffffffff()\n raw: 0200000000000000 dead000000000040 ffff88810d23c000 0000000000000000\n raw: 00000001451b6000 0000000000000001 00000000ffffffff 0000000000000000\n page dumped because: page_pool leak\n Modules linked in: ip_gre gre mlx5_ib mlx5_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink iptable_nat nf_nat xt_addrtype br_netfilter rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core overlay zram zsmalloc fuse [last unloaded: mlx5_core]\n CPU: 16 PID: 96 Comm: ksoftirqd/16 Not tainted 6.8.0-rc4+ #22\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x36/0x50\n bad_page+0x70/0xf0\n free_unref_page_prepare+0x27a/0x460\n free_unref_page+0x38/0x120\n esp_ssg_unref.isra.0+0x15f/0x200\n esp_output_tail+0x66d/0x780\n esp_xmit+0x2c5/0x360\n validate_xmit_xfrm+0x313/0x370\n ? validate_xmit_skb+0x1d/0x330\n validate_xmit_skb_list+0x4c/0x70\n sch_direct_xmit+0x23e/0x350\n __dev_queue_xmit+0x337/0xba0\n ? nf_hook_slow+0x3f/0xd0\n ip_finish_output2+0x25e/0x580\n iptunnel_xmit+0x19b/0x240\n ip_tunnel_xmit+0x5fb/0xb60\n ipgre_xmit+0x14d/0x280 [ip_gre]\n dev_hard_start_xmit+0xc3/0x1c0\n __dev_queue_xmit+0x208/0xba0\n ? nf_hook_slow+0x3f/0xd0\n ip_finish_output2+0x1ca/0x580\n ip_sublist_rcv_finish+0x32/0x40\n ip_sublist_rcv+0x1b2/0x1f0\n ? ip_rcv_finish_core.constprop.0+0x460/0x460\n ip_list_rcv+0x103/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x1b3/0x2c0\n napi_gro_receive+0xc8/0x200\n gro_cell_poll+0x52/0x90\n __napi_poll+0x25/0x1a0\n net_rx_action+0x28e/0x300\n __do_softirq+0xc3/0x276\n ? sort_range+0x20/0x20\n run_ksoftirqd+0x1e/0x30\n smpboot_thread_fn+0xa6/0x130\n kthread+0xcd/0x100\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x31/0x50\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\nThe suggested fix is to introduce a new wrapper (skb_page_unref) that\ncovers page refcounting for page_pool pages as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26953",
"url": "https://www.suse.com/security/cve/CVE-2024-26953"
},
{
"category": "external",
"summary": "SUSE Bug 1223656 for CVE-2024-26953",
"url": "https://bugzilla.suse.com/1223656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-26953"
},
{
"cve": "CVE-2024-35888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerspan: make sure erspan_base_hdr is present in skb-\u003ehead\n\nsyzbot reported a problem in ip6erspan_rcv() [1]\n\nIssue is that ip6erspan_rcv() (and erspan_rcv()) no longer make\nsure erspan_base_hdr is present in skb linear part (skb-\u003ehead)\nbefore getting @ver field from it.\n\nAdd the missing pskb_may_pull() calls.\n\nv2: Reload iph pointer in erspan_rcv() after pskb_may_pull()\n because skb-\u003ehead might have changed.\n\n[1]\n\n BUG: KMSAN: uninit-value in pskb_may_pull_reason include/linux/skbuff.h:2742 [inline]\n BUG: KMSAN: uninit-value in pskb_may_pull include/linux/skbuff.h:2756 [inline]\n BUG: KMSAN: uninit-value in ip6erspan_rcv net/ipv6/ip6_gre.c:541 [inline]\n BUG: KMSAN: uninit-value in gre_rcv+0x11f8/0x1930 net/ipv6/ip6_gre.c:610\n pskb_may_pull_reason include/linux/skbuff.h:2742 [inline]\n pskb_may_pull include/linux/skbuff.h:2756 [inline]\n ip6erspan_rcv net/ipv6/ip6_gre.c:541 [inline]\n gre_rcv+0x11f8/0x1930 net/ipv6/ip6_gre.c:610\n ip6_protocol_deliver_rcu+0x1d4c/0x2ca0 net/ipv6/ip6_input.c:438\n ip6_input_finish net/ipv6/ip6_input.c:483 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_input+0x15d/0x430 net/ipv6/ip6_input.c:492\n ip6_mc_input+0xa7e/0xc80 net/ipv6/ip6_input.c:586\n dst_input include/net/dst.h:460 [inline]\n ip6_rcv_finish+0x955/0x970 net/ipv6/ip6_input.c:79\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ipv6_rcv+0xde/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5538 [inline]\n __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5652\n netif_receive_skb_internal net/core/dev.c:5738 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5798\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1549\n tun_get_user+0x5566/0x69e0 drivers/net/tun.c:2002\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2108 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xb63/0x1520 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xe0 fs/read_write.c:652\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3804 [inline]\n slab_alloc_node mm/slub.c:3845 [inline]\n kmem_cache_alloc_node+0x613/0xc50 mm/slub.c:3888\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:577\n __alloc_skb+0x35b/0x7a0 net/core/skbuff.c:668\n alloc_skb include/linux/skbuff.h:1318 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6504\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2795\n tun_alloc_skb drivers/net/tun.c:1525 [inline]\n tun_get_user+0x209a/0x69e0 drivers/net/tun.c:1846\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2108 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xb63/0x1520 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xe0 fs/read_write.c:652\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nCPU: 1 PID: 5045 Comm: syz-executor114 Not tainted 6.9.0-rc1-syzkaller-00021-g962490525cff #0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35888",
"url": "https://www.suse.com/security/cve/CVE-2024-35888"
},
{
"category": "external",
"summary": "SUSE Bug 1224518 for CVE-2024-35888",
"url": "https://bugzilla.suse.com/1224518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-35888"
},
{
"cve": "CVE-2024-35937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: check A-MSDU format more carefully\n\nIf it looks like there\u0027s another subframe in the A-MSDU\nbut the header isn\u0027t fully there, we can end up reading\ndata out of bounds, only to discard later. Make this a\nbit more careful and check if the subframe header can\neven be present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35937",
"url": "https://www.suse.com/security/cve/CVE-2024-35937"
},
{
"category": "external",
"summary": "SUSE Bug 1224526 for CVE-2024-35937",
"url": "https://bugzilla.suse.com/1224526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-35937"
},
{
"cve": "CVE-2024-35980",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35980"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: tlb: Fix TLBI RANGE operand\n\nKVM/arm64 relies on TLBI RANGE feature to flush TLBs when the dirty\npages are collected by VMM and the page table entries become write\nprotected during live migration. Unfortunately, the operand passed\nto the TLBI RANGE instruction isn\u0027t correctly sorted out due to the\ncommit 117940aa6e5f (\"KVM: arm64: Define kvm_tlb_flush_vmid_range()\").\nIt leads to crash on the destination VM after live migration because\nTLBs aren\u0027t flushed completely and some of the dirty pages are missed.\n\nFor example, I have a VM where 8GB memory is assigned, starting from\n0x40000000 (1GB). Note that the host has 4KB as the base page size.\nIn the middile of migration, kvm_tlb_flush_vmid_range() is executed\nto flush TLBs. It passes MAX_TLBI_RANGE_PAGES as the argument to\n__kvm_tlb_flush_vmid_range() and __flush_s2_tlb_range_op(). SCALE#3\nand NUM#31, corresponding to MAX_TLBI_RANGE_PAGES, isn\u0027t supported\nby __TLBI_RANGE_NUM(). In this specific case, -1 has been returned\nfrom __TLBI_RANGE_NUM() for SCALE#3/2/1/0 and rejected by the loop\nin the __flush_tlb_range_op() until the variable @scale underflows\nand becomes -9, 0xffff708000040000 is set as the operand. The operand\nis wrong since it\u0027s sorted out by __TLBI_VADDR_RANGE() according to\ninvalid @scale and @num.\n\nFix it by extending __TLBI_RANGE_NUM() to support the combination of\nSCALE#3 and NUM#31. With the changes, [-1 31] instead of [-1 30] can\nbe returned from the macro, meaning the TLBs for 0x200000 pages in the\nabove example can be flushed in one shoot with SCALE#3 and NUM#31. The\nmacro TLBI_RANGE_MASK is dropped since no one uses it any more. The\ncomments are also adjusted accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35980",
"url": "https://www.suse.com/security/cve/CVE-2024-35980"
},
{
"category": "external",
"summary": "SUSE Bug 1224574 for CVE-2024-35980",
"url": "https://bugzilla.suse.com/1224574"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-35980"
},
{
"cve": "CVE-2024-36484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36484"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: relax socket state check at accept time.\n\nChristoph reported the following splat:\n\nWARNING: CPU: 1 PID: 772 at net/ipv4/af_inet.c:761 __inet_accept+0x1f4/0x4a0\nModules linked in:\nCPU: 1 PID: 772 Comm: syz-executor510 Not tainted 6.9.0-rc7-g7da7119fe22b #56\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\nRIP: 0010:__inet_accept+0x1f4/0x4a0 net/ipv4/af_inet.c:759\nCode: 04 38 84 c0 0f 85 87 00 00 00 41 c7 04 24 03 00 00 00 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 ec b7 da fd \u003c0f\u003e 0b e9 7f fe ff ff e8 e0 b7 da fd 0f 0b e9 fe fe ff ff 89 d9 80\nRSP: 0018:ffffc90000c2fc58 EFLAGS: 00010293\nRAX: ffffffff836bdd14 RBX: 0000000000000000 RCX: ffff888104668000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: dffffc0000000000 R08: ffffffff836bdb89 R09: fffff52000185f64\nR10: dffffc0000000000 R11: fffff52000185f64 R12: dffffc0000000000\nR13: 1ffff92000185f98 R14: ffff88810754d880 R15: ffff8881007b7800\nFS: 000000001c772880(0000) GS:ffff88811b280000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fb9fcf2e178 CR3: 00000001045d2002 CR4: 0000000000770ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n inet_accept+0x138/0x1d0 net/ipv4/af_inet.c:786\n do_accept+0x435/0x620 net/socket.c:1929\n __sys_accept4_file net/socket.c:1969 [inline]\n __sys_accept4+0x9b/0x110 net/socket.c:1999\n __do_sys_accept net/socket.c:2016 [inline]\n __se_sys_accept net/socket.c:2013 [inline]\n __x64_sys_accept+0x7d/0x90 net/socket.c:2013\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x58/0x100 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x4315f9\nCode: fd ff 48 81 c4 80 00 00 00 e9 f1 fe ff ff 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 0f 83 ab b4 fd ff c3 66 2e 0f 1f 84 00 00 00 00\nRSP: 002b:00007ffdb26d9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002b\nRAX: ffffffffffffffda RBX: 0000000000400300 RCX: 00000000004315f9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004\nRBP: 00000000006e1018 R08: 0000000000400300 R09: 0000000000400300\nR10: 0000000000400300 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000040cdf0 R14: 000000000040ce80 R15: 0000000000000055\n \u003c/TASK\u003e\n\nThe reproducer invokes shutdown() before entering the listener status.\nAfter commit 94062790aedb (\"tcp: defer shutdown(SEND_SHUTDOWN) for\nTCP_SYN_RECV sockets\"), the above causes the child to reach the accept\nsyscall in FIN_WAIT1 status.\n\nEric noted we can relax the existing assertion in __inet_accept()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36484",
"url": "https://www.suse.com/security/cve/CVE-2024-36484"
},
{
"category": "external",
"summary": "SUSE Bug 1226872 for CVE-2024-36484",
"url": "https://bugzilla.suse.com/1226872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36484"
},
{
"cve": "CVE-2024-36883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix out-of-bounds access in ops_init\n\nnet_alloc_generic is called by net_alloc, which is called without any\nlocking. It reads max_gen_ptrs, which is changed under pernet_ops_rwsem. It\nis read twice, first to allocate an array, then to set s.len, which is\nlater used to limit the bounds of the array access.\n\nIt is possible that the array is allocated and another thread is\nregistering a new pernet ops, increments max_gen_ptrs, which is then used\nto set s.len with a larger than allocated length for the variable array.\n\nFix it by reading max_gen_ptrs only once in net_alloc_generic. If\nmax_gen_ptrs is later incremented, it will be caught in net_assign_generic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36883",
"url": "https://www.suse.com/security/cve/CVE-2024-36883"
},
{
"category": "external",
"summary": "SUSE Bug 1225725 for CVE-2024-36883",
"url": "https://bugzilla.suse.com/1225725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36883"
},
{
"cve": "CVE-2024-36886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix UAF in error path\n\nSam Page (sam4k) working with Trend Micro Zero Day Initiative reported\na UAF in the tipc_buf_append() error path:\n\nBUG: KASAN: slab-use-after-free in kfree_skb_list_reason+0x47e/0x4c0\nlinux/net/core/skbuff.c:1183\nRead of size 8 at addr ffff88804d2a7c80 by task poc/8034\n\nCPU: 1 PID: 8034 Comm: poc Not tainted 6.8.2 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.0-debian-1.16.0-5 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n __dump_stack linux/lib/dump_stack.c:88\n dump_stack_lvl+0xd9/0x1b0 linux/lib/dump_stack.c:106\n print_address_description linux/mm/kasan/report.c:377\n print_report+0xc4/0x620 linux/mm/kasan/report.c:488\n kasan_report+0xda/0x110 linux/mm/kasan/report.c:601\n kfree_skb_list_reason+0x47e/0x4c0 linux/net/core/skbuff.c:1183\n skb_release_data+0x5af/0x880 linux/net/core/skbuff.c:1026\n skb_release_all linux/net/core/skbuff.c:1094\n __kfree_skb linux/net/core/skbuff.c:1108\n kfree_skb_reason+0x12d/0x210 linux/net/core/skbuff.c:1144\n kfree_skb linux/./include/linux/skbuff.h:1244\n tipc_buf_append+0x425/0xb50 linux/net/tipc/msg.c:186\n tipc_link_input+0x224/0x7c0 linux/net/tipc/link.c:1324\n tipc_link_rcv+0x76e/0x2d70 linux/net/tipc/link.c:1824\n tipc_rcv+0x45f/0x10f0 linux/net/tipc/node.c:2159\n tipc_udp_recv+0x73b/0x8f0 linux/net/tipc/udp_media.c:390\n udp_queue_rcv_one_skb+0xad2/0x1850 linux/net/ipv4/udp.c:2108\n udp_queue_rcv_skb+0x131/0xb00 linux/net/ipv4/udp.c:2186\n udp_unicast_rcv_skb+0x165/0x3b0 linux/net/ipv4/udp.c:2346\n __udp4_lib_rcv+0x2594/0x3400 linux/net/ipv4/udp.c:2422\n ip_protocol_deliver_rcu+0x30c/0x4e0 linux/net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x2e4/0x520 linux/net/ipv4/ip_input.c:233\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_local_deliver+0x18e/0x1f0 linux/net/ipv4/ip_input.c:254\n dst_input linux/./include/net/dst.h:461\n ip_rcv_finish linux/net/ipv4/ip_input.c:449\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_rcv+0x2c5/0x5d0 linux/net/ipv4/ip_input.c:569\n __netif_receive_skb_one_core+0x199/0x1e0 linux/net/core/dev.c:5534\n __netif_receive_skb+0x1f/0x1c0 linux/net/core/dev.c:5648\n process_backlog+0x101/0x6b0 linux/net/core/dev.c:5976\n __napi_poll.constprop.0+0xba/0x550 linux/net/core/dev.c:6576\n napi_poll linux/net/core/dev.c:6645\n net_rx_action+0x95a/0xe90 linux/net/core/dev.c:6781\n __do_softirq+0x21f/0x8e7 linux/kernel/softirq.c:553\n do_softirq linux/kernel/softirq.c:454\n do_softirq+0xb2/0xf0 linux/kernel/softirq.c:441\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x100/0x120 linux/kernel/softirq.c:381\n local_bh_enable linux/./include/linux/bottom_half.h:33\n rcu_read_unlock_bh linux/./include/linux/rcupdate.h:851\n __dev_queue_xmit+0x871/0x3ee0 linux/net/core/dev.c:4378\n dev_queue_xmit linux/./include/linux/netdevice.h:3169\n neigh_hh_output linux/./include/net/neighbour.h:526\n neigh_output linux/./include/net/neighbour.h:540\n ip_finish_output2+0x169f/0x2550 linux/net/ipv4/ip_output.c:235\n __ip_finish_output linux/net/ipv4/ip_output.c:313\n __ip_finish_output+0x49e/0x950 linux/net/ipv4/ip_output.c:295\n ip_finish_output+0x31/0x310 linux/net/ipv4/ip_output.c:323\n NF_HOOK_COND linux/./include/linux/netfilter.h:303\n ip_output+0x13b/0x2a0 linux/net/ipv4/ip_output.c:433\n dst_output linux/./include/net/dst.h:451\n ip_local_out linux/net/ipv4/ip_output.c:129\n ip_send_skb+0x3e5/0x560 linux/net/ipv4/ip_output.c:1492\n udp_send_skb+0x73f/0x1530 linux/net/ipv4/udp.c:963\n udp_sendmsg+0x1a36/0x2b40 linux/net/ipv4/udp.c:1250\n inet_sendmsg+0x105/0x140 linux/net/ipv4/af_inet.c:850\n sock_sendmsg_nosec linux/net/socket.c:730\n __sock_sendmsg linux/net/socket.c:745\n __sys_sendto+0x42c/0x4e0 linux/net/socket.c:2191\n __do_sys_sendto linux/net/socket.c:2203\n __se_sys_sendto linux/net/socket.c:2199\n __x64_sys_sendto+0xe0/0x1c0 linux/net/socket.c:2199\n do_syscall_x64 linux/arch/x86/entry/common.c:52\n do_syscall_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36886",
"url": "https://www.suse.com/security/cve/CVE-2024-36886"
},
{
"category": "external",
"summary": "SUSE Bug 1225730 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36886"
},
{
"cve": "CVE-2024-36905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets\n\nTCP_SYN_RECV state is really special, it is only used by\ncross-syn connections, mostly used by fuzzers.\n\nIn the following crash [1], syzbot managed to trigger a divide\nby zero in tcp_rcv_space_adjust()\n\nA socket makes the following state transitions,\nwithout ever calling tcp_init_transfer(),\nmeaning tcp_init_buffer_space() is also not called.\n\n TCP_CLOSE\nconnect()\n TCP_SYN_SENT\n TCP_SYN_RECV\nshutdown() -\u003e tcp_shutdown(sk, SEND_SHUTDOWN)\n TCP_FIN_WAIT1\n\nTo fix this issue, change tcp_shutdown() to not\nperform a TCP_SYN_RECV -\u003e TCP_FIN_WAIT1 transition,\nwhich makes no sense anyway.\n\nWhen tcp_rcv_state_process() later changes socket state\nfrom TCP_SYN_RECV to TCP_ESTABLISH, then look at\nsk-\u003esk_shutdown to finally enter TCP_FIN_WAIT1 state,\nand send a FIN packet from a sane socket state.\n\nThis means tcp_send_fin() can now be called from BH\ncontext, and must use GFP_ATOMIC allocations.\n\n[1]\ndivide error: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 1 PID: 5084 Comm: syz-executor358 Not tainted 6.9.0-rc6-syzkaller-00022-g98369dccd2f8 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\n RIP: 0010:tcp_rcv_space_adjust+0x2df/0x890 net/ipv4/tcp_input.c:767\nCode: e3 04 4c 01 eb 48 8b 44 24 38 0f b6 04 10 84 c0 49 89 d5 0f 85 a5 03 00 00 41 8b 8e c8 09 00 00 89 e8 29 c8 48 0f af c3 31 d2 \u003c48\u003e f7 f1 48 8d 1c 43 49 8d 96 76 08 00 00 48 89 d0 48 c1 e8 03 48\nRSP: 0018:ffffc900031ef3f0 EFLAGS: 00010246\nRAX: 0c677a10441f8f42 RBX: 000000004fb95e7e RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: 0000000027d4b11f R08: ffffffff89e535a4 R09: 1ffffffff25e6ab7\nR10: dffffc0000000000 R11: ffffffff8135e920 R12: ffff88802a9f8d30\nR13: dffffc0000000000 R14: ffff88802a9f8d00 R15: 1ffff1100553f2da\nFS: 00005555775c0380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f1155bf2304 CR3: 000000002b9f2000 CR4: 0000000000350ef0\nCall Trace:\n \u003cTASK\u003e\n tcp_recvmsg_locked+0x106d/0x25a0 net/ipv4/tcp.c:2513\n tcp_recvmsg+0x25d/0x920 net/ipv4/tcp.c:2578\n inet6_recvmsg+0x16a/0x730 net/ipv6/af_inet6.c:680\n sock_recvmsg_nosec net/socket.c:1046 [inline]\n sock_recvmsg+0x109/0x280 net/socket.c:1068\n ____sys_recvmsg+0x1db/0x470 net/socket.c:2803\n ___sys_recvmsg net/socket.c:2845 [inline]\n do_recvmmsg+0x474/0xae0 net/socket.c:2939\n __sys_recvmmsg net/socket.c:3018 [inline]\n __do_sys_recvmmsg net/socket.c:3041 [inline]\n __se_sys_recvmmsg net/socket.c:3034 [inline]\n __x64_sys_recvmmsg+0x199/0x250 net/socket.c:3034\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7faeb6363db9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007ffcc1997168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007faeb6363db9\nRDX: 0000000000000001 RSI: 0000000020000bc0 RDI: 0000000000000005\nRBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000001c\nR10: 0000000000000122 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36905",
"url": "https://www.suse.com/security/cve/CVE-2024-36905"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-36905",
"url": "https://bugzilla.suse.com/1225742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36905"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-36954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix a possible memleak in tipc_buf_append\n\n__skb_linearize() doesn\u0027t free the skb when it fails, so move\n\u0027*buf = NULL\u0027 after __skb_linearize(), so that the skb can be\nfreed on the err path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36954",
"url": "https://www.suse.com/security/cve/CVE-2024-36954"
},
{
"category": "external",
"summary": "SUSE Bug 1225764 for CVE-2024-36954",
"url": "https://bugzilla.suse.com/1225764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-36954"
},
{
"cve": "CVE-2024-38577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow\n\nThere is a possibility of buffer overflow in\nshow_rcu_tasks_trace_gp_kthread() if counters, passed\nto sprintf() are huge. Counter numbers, needed for this\nare unrealistically high, but buffer overflow is still\npossible.\n\nUse snprintf() with buffer size instead of sprintf().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38577",
"url": "https://www.suse.com/security/cve/CVE-2024-38577"
},
{
"category": "external",
"summary": "SUSE Bug 1226631 for CVE-2024-38577",
"url": "https://bugzilla.suse.com/1226631"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-38577"
},
{
"cve": "CVE-2024-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: fix possible dead-lock in nr_rt_ioctl()\n\nsyzbot loves netrom, and found a possible deadlock in nr_rt_ioctl [1]\n\nMake sure we always acquire nr_node_list_lock before nr_node_lock(nr_node)\n\n[1]\nWARNING: possible circular locking dependency detected\n6.9.0-rc7-syzkaller-02147-g654de42f3fc6 #0 Not tainted\n------------------------------------------------------\nsyz-executor350/5129 is trying to acquire lock:\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_node_lock include/net/netrom.h:152 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:464 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n\nbut task is already holding lock:\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_rt_ioctl+0x10a/0x1090 net/netrom/nr_route.c:697\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (nr_node_list_lock){+...}-{2:2}:\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_remove_node net/netrom/nr_route.c:299 [inline]\n nr_del_node+0x4b4/0x820 net/netrom/nr_route.c:355\n nr_rt_ioctl+0xa95/0x1090 net/netrom/nr_route.c:683\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n-\u003e #0 (\u0026nr_node-\u003enode_lock){+...}-{2:2}:\n check_prev_add kernel/locking/lockdep.c:3134 [inline]\n check_prevs_add kernel/locking/lockdep.c:3253 [inline]\n validate_chain+0x18cb/0x58e0 kernel/locking/lockdep.c:3869\n __lock_acquire+0x1346/0x1fd0 kernel/locking/lockdep.c:5137\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_node_lock include/net/netrom.h:152 [inline]\n nr_dec_obs net/netrom/nr_route.c:464 [inline]\n nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nother info that might help us debug this:\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n\n *** DEADLOCK ***\n\n1 lock held by syz-executor350/5129:\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n #0: ffffffff8f70\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38589",
"url": "https://www.suse.com/security/cve/CVE-2024-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1226748 for CVE-2024-38589",
"url": "https://bugzilla.suse.com/1226748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-38589"
},
{
"cve": "CVE-2024-38615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: exit() callback is optional\n\nThe exit() callback is optional and shouldn\u0027t be called without checking\na valid pointer first.\n\nAlso, we must clear freq_table pointer even if the exit() callback isn\u0027t\npresent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38615",
"url": "https://www.suse.com/security/cve/CVE-2024-38615"
},
{
"category": "external",
"summary": "SUSE Bug 1226592 for CVE-2024-38615",
"url": "https://bugzilla.suse.com/1226592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-38615"
},
{
"cve": "CVE-2024-40997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: fix memory leak on CPU EPP exit\n\nThe cpudata memory from kzalloc() in amd_pstate_epp_cpu_init() is\nnot freed in the analogous exit function, so fix that.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40997",
"url": "https://www.suse.com/security/cve/CVE-2024-40997"
},
{
"category": "external",
"summary": "SUSE Bug 1227853 for CVE-2024-40997",
"url": "https://bugzilla.suse.com/1227853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-40997"
},
{
"cve": "CVE-2024-41016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()\n\nxattr in ocfs2 maybe \u0027non-indexed\u0027, which saved with additional space\nrequested. It\u0027s better to check if the memory is out of bound before\nmemcmp, although this possibility mainly comes from crafted poisonous\nimages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41016",
"url": "https://www.suse.com/security/cve/CVE-2024-41016"
},
{
"category": "external",
"summary": "SUSE Bug 1228410 for CVE-2024-41016",
"url": "https://bugzilla.suse.com/1228410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-41016"
},
{
"cve": "CVE-2024-41023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/deadline: Fix task_struct reference leak\n\nDuring the execution of the following stress test with linux-rt:\n\nstress-ng --cyclic 30 --timeout 30 --minimize --quiet\n\nkmemleak frequently reported a memory leak concerning the task_struct:\n\nunreferenced object 0xffff8881305b8000 (size 16136):\n comm \"stress-ng\", pid 614, jiffies 4294883961 (age 286.412s)\n object hex dump (first 32 bytes):\n 02 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 .@..............\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n debug hex dump (first 16 bytes):\n 53 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 S...............\n backtrace:\n [\u003c00000000046b6790\u003e] dup_task_struct+0x30/0x540\n [\u003c00000000c5ca0f0b\u003e] copy_process+0x3d9/0x50e0\n [\u003c00000000ced59777\u003e] kernel_clone+0xb0/0x770\n [\u003c00000000a50befdc\u003e] __do_sys_clone+0xb6/0xf0\n [\u003c000000001dbf2008\u003e] do_syscall_64+0x5d/0xf0\n [\u003c00000000552900ff\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nThe issue occurs in start_dl_timer(), which increments the task_struct\nreference count and sets a timer. The timer callback, dl_task_timer,\nis supposed to decrement the reference count upon expiration. However,\nif enqueue_task_dl() is called before the timer expires and cancels it,\nthe reference count is not decremented, leading to the leak.\n\nThis patch fixes the reference leak by ensuring the task_struct\nreference count is properly decremented when the timer is canceled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41023",
"url": "https://www.suse.com/security/cve/CVE-2024-41023"
},
{
"category": "external",
"summary": "SUSE Bug 1228430 for CVE-2024-41023",
"url": "https://bugzilla.suse.com/1228430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-41023"
},
{
"cve": "CVE-2024-41049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilelock: fix potential use-after-free in posix_lock_inode\n\nLight Hsieh reported a KASAN UAF warning in trace_posix_lock_inode().\nThe request pointer had been changed earlier to point to a lock entry\nthat was added to the inode\u0027s list. However, before the tracepoint could\nfire, another task raced in and freed that lock.\n\nFix this by moving the tracepoint inside the spinlock, which should\nensure that this doesn\u0027t happen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41049",
"url": "https://www.suse.com/security/cve/CVE-2024-41049"
},
{
"category": "external",
"summary": "SUSE Bug 1228486 for CVE-2024-41049",
"url": "https://bugzilla.suse.com/1228486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-41049"
},
{
"cve": "CVE-2024-42131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: avoid overflows in dirty throttling logic\n\nThe dirty throttling logic is interspersed with assumptions that dirty\nlimits in PAGE_SIZE units fit into 32-bit (so that various multiplications\nfit into 64-bits). If limits end up being larger, we will hit overflows,\npossible divisions by 0 etc. Fix these problems by never allowing so\nlarge dirty limits as they have dubious practical value anyway. For\ndirty_bytes / dirty_background_bytes interfaces we can just refuse to set\nso large limits. For dirty_ratio / dirty_background_ratio it isn\u0027t so\nsimple as the dirty limit is computed from the amount of available memory\nwhich can change due to memory hotplug etc. So when converting dirty\nlimits from ratios to numbers of pages, we just don\u0027t allow the result to\nexceed UINT_MAX.\n\nThis is root-only triggerable problem which occurs when the operator\nsets dirty limits to \u003e16 TB.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42131",
"url": "https://www.suse.com/security/cve/CVE-2024-42131"
},
{
"category": "external",
"summary": "SUSE Bug 1228650 for CVE-2024-42131",
"url": "https://bugzilla.suse.com/1228650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-42131"
},
{
"cve": "CVE-2024-43817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: missing check virtio\n\nTwo missing check in virtio_net_hdr_to_skb() allowed syzbot\nto crash kernels again\n\n1. After the skb_segment function the buffer may become non-linear\n(nr_frags != 0), but since the SKBTX_SHARED_FRAG flag is not set anywhere\nthe __skb_linearize function will not be executed, then the buffer will\nremain non-linear. Then the condition (offset \u003e= skb_headlen(skb))\nbecomes true, which causes WARN_ON_ONCE in skb_checksum_help.\n\n2. The struct sk_buff and struct virtio_net_hdr members must be\nmathematically related.\n(gso_size) must be greater than (needed) otherwise WARN_ON_ONCE.\n(remainder) must be greater than (needed) otherwise WARN_ON_ONCE.\n(remainder) may be 0 if division is without remainder.\n\noffset+2 (4191) \u003e skb_headlen() (1116)\nWARNING: CPU: 1 PID: 5084 at net/core/dev.c:3303 skb_checksum_help+0x5e2/0x740 net/core/dev.c:3303\nModules linked in:\nCPU: 1 PID: 5084 Comm: syz-executor336 Not tainted 6.7.0-rc3-syzkaller-00014-gdf60cee26a2e #0\nHardware name: Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023\nRIP: 0010:skb_checksum_help+0x5e2/0x740 net/core/dev.c:3303\nCode: 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 52 01 00 00 44 89 e2 2b 53 74 4c 89 ee 48 c7 c7 40 57 e9 8b e8 af 8f dd f8 90 \u003c0f\u003e 0b 90 90 e9 87 fe ff ff e8 40 0f 6e f9 e9 4b fa ff ff 48 89 ef\nRSP: 0018:ffffc90003a9f338 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: ffff888025125780 RCX: ffffffff814db209\nRDX: ffff888015393b80 RSI: ffffffff814db216 RDI: 0000000000000001\nRBP: ffff8880251257f4 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000045c\nR13: 000000000000105f R14: ffff8880251257f0 R15: 000000000000105d\nFS: 0000555555c24380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000002000f000 CR3: 0000000023151000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ip_do_fragment+0xa1b/0x18b0 net/ipv4/ip_output.c:777\n ip_fragment.constprop.0+0x161/0x230 net/ipv4/ip_output.c:584\n ip_finish_output_gso net/ipv4/ip_output.c:286 [inline]\n __ip_finish_output net/ipv4/ip_output.c:308 [inline]\n __ip_finish_output+0x49c/0x650 net/ipv4/ip_output.c:295\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n ip_output+0x13b/0x2a0 net/ipv4/ip_output.c:433\n dst_output include/net/dst.h:451 [inline]\n ip_local_out+0xaf/0x1a0 net/ipv4/ip_output.c:129\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ipip6_tunnel_xmit net/ipv6/sit.c:1034 [inline]\n sit_tunnel_xmit+0xed2/0x28f0 net/ipv6/sit.c:1076\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3545 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3561\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4346\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n packet_xmit+0x257/0x380 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3087 [inline]\n packet_sendmsg+0x24ca/0x5240 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0xd5/0x180 net/socket.c:745\n __sys_sendto+0x255/0x340 net/socket.c:2190\n __do_sys_sendto net/socket.c:2202 [inline]\n __se_sys_sendto net/socket.c:2198 [inline]\n __x64_sys_sendto+0xe0/0x1b0 net/socket.c:2198\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x40/0x110 arch/x86/entry/common.c:82\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43817",
"url": "https://www.suse.com/security/cve/CVE-2024-43817"
},
{
"category": "external",
"summary": "SUSE Bug 1229312 for CVE-2024-43817",
"url": "https://bugzilla.suse.com/1229312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-43817"
},
{
"cve": "CVE-2024-43897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: drop bad gso csum_start and offset in virtio_net_hdr\n\nTighten csum_start and csum_offset checks in virtio_net_hdr_to_skb\nfor GSO packets.\n\nThe function already checks that a checksum requested with\nVIRTIO_NET_HDR_F_NEEDS_CSUM is in skb linear. But for GSO packets\nthis might not hold for segs after segmentation.\n\nSyzkaller demonstrated to reach this warning in skb_checksum_help\n\n\toffset = skb_checksum_start_offset(skb);\n\tret = -EINVAL;\n\tif (WARN_ON_ONCE(offset \u003e= skb_headlen(skb)))\n\nBy injecting a TSO packet:\n\nWARNING: CPU: 1 PID: 3539 at net/core/dev.c:3284 skb_checksum_help+0x3d0/0x5b0\n ip_do_fragment+0x209/0x1b20 net/ipv4/ip_output.c:774\n ip_finish_output_gso net/ipv4/ip_output.c:279 [inline]\n __ip_finish_output+0x2bd/0x4b0 net/ipv4/ip_output.c:301\n iptunnel_xmit+0x50c/0x930 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x2296/0x2c70 net/ipv4/ip_tunnel.c:813\n __gre_xmit net/ipv4/ip_gre.c:469 [inline]\n ipgre_xmit+0x759/0xa60 net/ipv4/ip_gre.c:661\n __netdev_start_xmit include/linux/netdevice.h:4850 [inline]\n netdev_start_xmit include/linux/netdevice.h:4864 [inline]\n xmit_one net/core/dev.c:3595 [inline]\n dev_hard_start_xmit+0x261/0x8c0 net/core/dev.c:3611\n __dev_queue_xmit+0x1b97/0x3c90 net/core/dev.c:4261\n packet_snd net/packet/af_packet.c:3073 [inline]\n\nThe geometry of the bad input packet at tcp_gso_segment:\n\n[ 52.003050][ T8403] skb len=12202 headroom=244 headlen=12093 tailroom=0\n[ 52.003050][ T8403] mac=(168,24) mac_len=24 net=(192,52) trans=244\n[ 52.003050][ T8403] shinfo(txflags=0 nr_frags=1 gso(size=1552 type=3 segs=0))\n[ 52.003050][ T8403] csum(0x60000c7 start=199 offset=1536\nip_summed=3 complete_sw=0 valid=0 level=0)\n\nMitigate with stricter input validation.\n\ncsum_offset: for GSO packets, deduce the correct value from gso_type.\nThis is already done for USO. Extend it to TSO. Let UFO be:\nudp[46]_ufo_fragment ignores these fields and always computes the\nchecksum in software.\n\ncsum_start: finding the real offset requires parsing to the transport\nheader. Do not add a parser, use existing segmentation parsing. Thanks\nto SKB_GSO_DODGY, that also catches bad packets that are hw offloaded.\nAgain test both TSO and USO. Do not test UFO for the above reason, and\ndo not test UDP tunnel offload.\n\nGSO packet are almost always CHECKSUM_PARTIAL. USO packets may be\nCHECKSUM_NONE since commit 10154dbded6d6 (\"udp: Allow GSO transmit\nfrom devices with no checksum offload\"), but then still these fields\nare initialized correctly in udp4_hwcsum/udp6_hwcsum_outgoing. So no\nneed to test for ip_summed == CHECKSUM_PARTIAL first.\n\nThis revises an existing fix mentioned in the Fixes tag, which broke\nsmall packets with GSO offload, as detected by kselftests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43897",
"url": "https://www.suse.com/security/cve/CVE-2024-43897"
},
{
"category": "external",
"summary": "SUSE Bug 1229752 for CVE-2024-43897",
"url": "https://bugzilla.suse.com/1229752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-43897"
},
{
"cve": "CVE-2024-44932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix UAFs when destroying the queues\n\nThe second tagged commit started sometimes (very rarely, but possible)\nthrowing WARNs from\nnet/core/page_pool.c:page_pool_disable_direct_recycling().\nTurned out idpf frees interrupt vectors with embedded NAPIs *before*\nfreeing the queues making page_pools\u0027 NAPI pointers lead to freed\nmemory before these pools are destroyed by libeth.\nIt\u0027s not clear whether there are other accesses to the freed vectors\nwhen destroying the queues, but anyway, we usually free queue/interrupt\nvectors only when the queues are destroyed and the NAPIs are guaranteed\nto not be referenced anywhere.\n\nInvert the allocation and freeing logic making queue/interrupt vectors\nbe allocated first and freed last. Vectors don\u0027t require queues to be\npresent, so this is safe. Additionally, this change allows to remove\nthat useless queue-\u003eq_vector pointer cleanup, as vectors are still\nvalid when freeing the queues (+ both are freed within one function,\nso it\u0027s not clear why nullify the pointers at all).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44932",
"url": "https://www.suse.com/security/cve/CVE-2024-44932"
},
{
"category": "external",
"summary": "SUSE Bug 1229808 for CVE-2024-44932",
"url": "https://bugzilla.suse.com/1229808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-44932"
},
{
"cve": "CVE-2024-44964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix memory leaks and crashes while performing a soft reset\n\nThe second tagged commit introduced a UAF, as it removed restoring\nq_vector-\u003evport pointers after reinitializating the structures.\nThis is due to that all queue allocation functions are performed here\nwith the new temporary vport structure and those functions rewrite\nthe backpointers to the vport. Then, this new struct is freed and\nthe pointers start leading to nowhere.\n\nBut generally speaking, the current logic is very fragile. It claims\nto be more reliable when the system is low on memory, but in fact, it\nconsumes two times more memory as at the moment of running this\nfunction, there are two vports allocated with their queues and vectors.\nMoreover, it claims to prevent the driver from running into \"bad state\",\nbut in fact, any error during the rebuild leaves the old vport in the\npartially allocated state.\nFinally, if the interface is down when the function is called, it always\nallocates a new queue set, but when the user decides to enable the\ninterface later on, vport_open() allocates them once again, IOW there\u0027s\na clear memory leak here.\n\nJust don\u0027t allocate a new queue set when performing a reset, that solves\ncrashes and memory leaks. Readd the old queue number and reopen the\ninterface on rollback - that solves limbo states when the device is left\ndisabled and/or without HW queues enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44964",
"url": "https://www.suse.com/security/cve/CVE-2024-44964"
},
{
"category": "external",
"summary": "SUSE Bug 1230220 for CVE-2024-44964",
"url": "https://bugzilla.suse.com/1230220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-44964"
},
{
"cve": "CVE-2024-44995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix a deadlock problem when config TC during resetting\n\nWhen config TC during the reset process, may cause a deadlock, the flow is\nas below:\n pf reset start\n |\n \u25bc\n ......\nsetup tc |\n | \u25bc\n \u25bc DOWN: napi_disable()\nnapi_disable()(skip) |\n | |\n \u25bc \u25bc\n ...... ......\n | |\n \u25bc |\nnapi_enable() |\n \u25bc\n UINIT: netif_napi_del()\n |\n \u25bc\n ......\n |\n \u25bc\n INIT: netif_napi_add()\n |\n \u25bc\n ...... global reset start\n | |\n \u25bc \u25bc\n UP: napi_enable()(skip) ......\n | |\n \u25bc \u25bc\n ...... napi_disable()\n\nIn reset process, the driver will DOWN the port and then UINIT, in this\ncase, the setup tc process will UP the port before UINIT, so cause the\nproblem. Adds a DOWN process in UINIT to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44995",
"url": "https://www.suse.com/security/cve/CVE-2024-44995"
},
{
"category": "external",
"summary": "SUSE Bug 1230231 for CVE-2024-44995",
"url": "https://bugzilla.suse.com/1230231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-44995"
},
{
"cve": "CVE-2024-46681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npktgen: use cpus_read_lock() in pg_net_init()\n\nI have seen the WARN_ON(smp_processor_id() != cpu) firing\nin pktgen_thread_worker() during tests.\n\nWe must use cpus_read_lock()/cpus_read_unlock()\naround the for_each_online_cpu(cpu) loop.\n\nWhile we are at it use WARN_ON_ONCE() to avoid a possible syslog flood.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46681",
"url": "https://www.suse.com/security/cve/CVE-2024-46681"
},
{
"category": "external",
"summary": "SUSE Bug 1230558 for CVE-2024-46681",
"url": "https://bugzilla.suse.com/1230558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46681"
},
{
"cve": "CVE-2024-46800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsch/netem: fix use after free in netem_dequeue\n\nIf netem_dequeue() enqueues packet to inner qdisc and that qdisc\nreturns __NET_XMIT_STOLEN. The packet is dropped but\nqdisc_tree_reduce_backlog() is not called to update the parent\u0027s\nq.qlen, leading to the similar use-after-free as Commit\ne04991a48dbaf382 (\"netem: fix return value if duplicate enqueue\nfails\")\n\nCommands to trigger KASAN UaF:\n\nip link add type dummy\nip link set lo up\nip link set dummy0 up\ntc qdisc add dev lo parent root handle 1: drr\ntc filter add dev lo parent 1: basic classid 1:1\ntc class add dev lo classid 1:1 drr\ntc qdisc add dev lo parent 1:1 handle 2: netem\ntc qdisc add dev lo parent 2: handle 3: drr\ntc filter add dev lo parent 3: basic classid 3:1 action mirred egress\nredirect dev dummy0\ntc class add dev lo classid 3:1 drr\nping -c1 -W0.01 localhost # Trigger bug\ntc class del dev lo classid 1:1\ntc class add dev lo classid 1:1 drr\nping -c1 -W0.01 localhost # UaF",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46800",
"url": "https://www.suse.com/security/cve/CVE-2024-46800"
},
{
"category": "external",
"summary": "SUSE Bug 1230827 for CVE-2024-46800",
"url": "https://bugzilla.suse.com/1230827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46800"
},
{
"cve": "CVE-2024-46802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: added NULL check at start of dc_validate_stream\n\n[Why]\nprevent invalid memory access\n\n[How]\ncheck if dc and stream are NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46802",
"url": "https://www.suse.com/security/cve/CVE-2024-46802"
},
{
"category": "external",
"summary": "SUSE Bug 1231111 for CVE-2024-46802",
"url": "https://bugzilla.suse.com/1231111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46802"
},
{
"cve": "CVE-2024-46804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add array index check for hdcp ddc access\n\n[Why]\nCoverity reports OVERRUN warning. Do not check if array\nindex valid.\n\n[How]\nCheck msg_id valid and valid array index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46804",
"url": "https://www.suse.com/security/cve/CVE-2024-46804"
},
{
"category": "external",
"summary": "SUSE Bug 1231132 for CVE-2024-46804",
"url": "https://bugzilla.suse.com/1231132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46804"
},
{
"cve": "CVE-2024-46805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46805"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix the waring dereferencing hive\n\nCheck the amdgpu_hive_info *hive that maybe is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46805",
"url": "https://www.suse.com/security/cve/CVE-2024-46805"
},
{
"category": "external",
"summary": "SUSE Bug 1231135 for CVE-2024-46805",
"url": "https://bugzilla.suse.com/1231135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46805"
},
{
"cve": "CVE-2024-46807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/amdgpu: Check tbo resource pointer\n\nValidate tbo resource pointer, skip if NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46807",
"url": "https://www.suse.com/security/cve/CVE-2024-46807"
},
{
"category": "external",
"summary": "SUSE Bug 1231138 for CVE-2024-46807",
"url": "https://bugzilla.suse.com/1231138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46807"
},
{
"cve": "CVE-2024-46810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ\n\nMake sure the connector is fully initialized before signalling any\nHPD events via drm_kms_helper_hotplug_event(), otherwise this may\nlead to NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46810",
"url": "https://www.suse.com/security/cve/CVE-2024-46810"
},
{
"category": "external",
"summary": "SUSE Bug 1231178 for CVE-2024-46810",
"url": "https://bugzilla.suse.com/1231178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46810"
},
{
"cve": "CVE-2024-46812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46812"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration\n\n[Why]\nCoverity reports Memory - illegal accesses.\n\n[How]\nSkip inactive planes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46812",
"url": "https://www.suse.com/security/cve/CVE-2024-46812"
},
{
"category": "external",
"summary": "SUSE Bug 1231187 for CVE-2024-46812",
"url": "https://bugzilla.suse.com/1231187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46812"
},
{
"cve": "CVE-2024-46819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: the warning dereferencing obj for nbio_v7_4\n\nif ras_manager obj null, don\u0027t print NBIO err data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46819",
"url": "https://www.suse.com/security/cve/CVE-2024-46819"
},
{
"category": "external",
"summary": "SUSE Bug 1231202 for CVE-2024-46819",
"url": "https://bugzilla.suse.com/1231202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46819"
},
{
"cve": "CVE-2024-46821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Fix negative array index read\n\nAvoid using the negative values\nfor clk_idex as an index into an array pptable-\u003eDpmDescriptor.\n\nV2: fix clk_index return check (Tim Huang)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46821",
"url": "https://www.suse.com/security/cve/CVE-2024-46821"
},
{
"category": "external",
"summary": "SUSE Bug 1231169 for CVE-2024-46821",
"url": "https://bugzilla.suse.com/1231169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46821"
},
{
"cve": "CVE-2024-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix smatch static checker warning\n\nadev-\u003egfx.imu.funcs could be NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46835",
"url": "https://www.suse.com/security/cve/CVE-2024-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1231098 for CVE-2024-46835",
"url": "https://bugzilla.suse.com/1231098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46835"
},
{
"cve": "CVE-2024-46842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info\n\nThe MBX_TIMEOUT return code is not handled in lpfc_get_sfp_info and the\nroutine unconditionally frees submitted mailbox commands regardless of\nreturn status. The issue is that for MBX_TIMEOUT cases, when firmware\nreturns SFP information at a later time, that same mailbox memory region\nreferences previously freed memory in its cmpl routine.\n\nFix by adding checks for the MBX_TIMEOUT return code. During mailbox\nresource cleanup, check the mbox flag to make sure that the wait did not\ntimeout. If the MBOX_WAKE flag is not set, then do not free the resources\nbecause it will be freed when firmware completes the mailbox at a later\ntime in its cmpl routine.\n\nAlso, increase the timeout from 30 to 60 seconds to accommodate boot\nscripts requiring longer timeouts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46842",
"url": "https://www.suse.com/security/cve/CVE-2024-46842"
},
{
"category": "external",
"summary": "SUSE Bug 1231101 for CVE-2024-46842",
"url": "https://bugzilla.suse.com/1231101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46842"
},
{
"cve": "CVE-2024-46853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: nxp-fspi: fix the KASAN report out-of-bounds bug\n\nChange the memcpy length to fix the out-of-bounds issue when writing the\ndata that is not 4 byte aligned to TX FIFO.\n\nTo reproduce the issue, write 3 bytes data to NOR chip.\n\ndd if=3b of=/dev/mtd0\n[ 36.926103] ==================================================================\n[ 36.933409] BUG: KASAN: slab-out-of-bounds in nxp_fspi_exec_op+0x26ec/0x2838\n[ 36.940514] Read of size 4 at addr ffff00081037c2a0 by task dd/455\n[ 36.946721]\n[ 36.948235] CPU: 3 UID: 0 PID: 455 Comm: dd Not tainted 6.11.0-rc5-gc7b0e37c8434 #1070\n[ 36.956185] Hardware name: Freescale i.MX8QM MEK (DT)\n[ 36.961260] Call trace:\n[ 36.963723] dump_backtrace+0x90/0xe8\n[ 36.967414] show_stack+0x18/0x24\n[ 36.970749] dump_stack_lvl+0x78/0x90\n[ 36.974451] print_report+0x114/0x5cc\n[ 36.978151] kasan_report+0xa4/0xf0\n[ 36.981670] __asan_report_load_n_noabort+0x1c/0x28\n[ 36.986587] nxp_fspi_exec_op+0x26ec/0x2838\n[ 36.990800] spi_mem_exec_op+0x8ec/0xd30\n[ 36.994762] spi_mem_no_dirmap_read+0x190/0x1e0\n[ 36.999323] spi_mem_dirmap_write+0x238/0x32c\n[ 37.003710] spi_nor_write_data+0x220/0x374\n[ 37.007932] spi_nor_write+0x110/0x2e8\n[ 37.011711] mtd_write_oob_std+0x154/0x1f0\n[ 37.015838] mtd_write_oob+0x104/0x1d0\n[ 37.019617] mtd_write+0xb8/0x12c\n[ 37.022953] mtdchar_write+0x224/0x47c\n[ 37.026732] vfs_write+0x1e4/0x8c8\n[ 37.030163] ksys_write+0xec/0x1d0\n[ 37.033586] __arm64_sys_write+0x6c/0x9c\n[ 37.037539] invoke_syscall+0x6c/0x258\n[ 37.041327] el0_svc_common.constprop.0+0x160/0x22c\n[ 37.046244] do_el0_svc+0x44/0x5c\n[ 37.049589] el0_svc+0x38/0x78\n[ 37.052681] el0t_64_sync_handler+0x13c/0x158\n[ 37.057077] el0t_64_sync+0x190/0x194\n[ 37.060775]\n[ 37.062274] Allocated by task 455:\n[ 37.065701] kasan_save_stack+0x2c/0x54\n[ 37.069570] kasan_save_track+0x20/0x3c\n[ 37.073438] kasan_save_alloc_info+0x40/0x54\n[ 37.077736] __kasan_kmalloc+0xa0/0xb8\n[ 37.081515] __kmalloc_noprof+0x158/0x2f8\n[ 37.085563] mtd_kmalloc_up_to+0x120/0x154\n[ 37.089690] mtdchar_write+0x130/0x47c\n[ 37.093469] vfs_write+0x1e4/0x8c8\n[ 37.096901] ksys_write+0xec/0x1d0\n[ 37.100332] __arm64_sys_write+0x6c/0x9c\n[ 37.104287] invoke_syscall+0x6c/0x258\n[ 37.108064] el0_svc_common.constprop.0+0x160/0x22c\n[ 37.112972] do_el0_svc+0x44/0x5c\n[ 37.116319] el0_svc+0x38/0x78\n[ 37.119401] el0t_64_sync_handler+0x13c/0x158\n[ 37.123788] el0t_64_sync+0x190/0x194\n[ 37.127474]\n[ 37.128977] The buggy address belongs to the object at ffff00081037c2a0\n[ 37.128977] which belongs to the cache kmalloc-8 of size 8\n[ 37.141177] The buggy address is located 0 bytes inside of\n[ 37.141177] allocated 3-byte region [ffff00081037c2a0, ffff00081037c2a3)\n[ 37.153465]\n[ 37.154971] The buggy address belongs to the physical page:\n[ 37.160559] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x89037c\n[ 37.168596] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)\n[ 37.175149] page_type: 0xfdffffff(slab)\n[ 37.179021] raw: 0bfffe0000000000 ffff000800002500 dead000000000122 0000000000000000\n[ 37.186788] raw: 0000000000000000 0000000080800080 00000001fdffffff 0000000000000000\n[ 37.194553] page dumped because: kasan: bad access detected\n[ 37.200144]\n[ 37.201647] Memory state around the buggy address:\n[ 37.206460] ffff00081037c180: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc\n[ 37.213701] ffff00081037c200: fa fc fc fc 05 fc fc fc 03 fc fc fc 02 fc fc fc\n[ 37.220946] \u003effff00081037c280: 06 fc fc fc 03 fc fc fc fc fc fc fc fc fc fc fc\n[ 37.228186] ^\n[ 37.232473] ffff00081037c300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n[ 37.239718] ffff00081037c380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n[ 37.246962] ==============================================================\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46853",
"url": "https://www.suse.com/security/cve/CVE-2024-46853"
},
{
"category": "external",
"summary": "SUSE Bug 1231083 for CVE-2024-46853",
"url": "https://bugzilla.suse.com/1231083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46853"
},
{
"cve": "CVE-2024-46859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46859"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: panasonic-laptop: Fix SINF array out of bounds accesses\n\nThe panasonic laptop code in various places uses the SINF array with index\nvalues of 0 - SINF_CUR_BRIGHT(0x0d) without checking that the SINF array\nis big enough.\n\nNot all panasonic laptops have this many SINF array entries, for example\nthe Toughbook CF-18 model only has 10 SINF array entries. So it only\nsupports the AC+DC brightness entries and mute.\n\nCheck that the SINF array has a minimum size which covers all AC+DC\nbrightness entries and refuse to load if the SINF array is smaller.\n\nFor higher SINF indexes hide the sysfs attributes when the SINF array\ndoes not contain an entry for that attribute, avoiding show()/store()\naccessing the array out of bounds and add bounds checking to the probe()\nand resume() code accessing these.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46859",
"url": "https://www.suse.com/security/cve/CVE-2024-46859"
},
{
"category": "external",
"summary": "SUSE Bug 1231089 for CVE-2024-46859",
"url": "https://bugzilla.suse.com/1231089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46859"
},
{
"cve": "CVE-2024-46864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: fix kexec crash due to VP assist page corruption\n\ncommit 9636be85cc5b (\"x86/hyperv: Fix hyperv_pcpu_input_arg handling when\nCPUs go online/offline\") introduces a new cpuhp state for hyperv\ninitialization.\n\ncpuhp_setup_state() returns the state number if state is\nCPUHP_AP_ONLINE_DYN or CPUHP_BP_PREPARE_DYN and 0 for all other states.\nFor the hyperv case, since a new cpuhp state was introduced it would\nreturn 0. However, in hv_machine_shutdown(), the cpuhp_remove_state() call\nis conditioned upon \"hyperv_init_cpuhp \u003e 0\". This will never be true and\nso hv_cpu_die() won\u0027t be called on all CPUs. This means the VP assist page\nwon\u0027t be reset. When the kexec kernel tries to setup the VP assist page\nagain, the hypervisor corrupts the memory region of the old VP assist page\ncausing a panic in case the kexec kernel is using that memory elsewhere.\nThis was originally fixed in commit dfe94d4086e4 (\"x86/hyperv: Fix kexec\npanic/hang issues\").\n\nGet rid of hyperv_init_cpuhp entirely since we are no longer using a\ndynamic cpuhp state and use CPUHP_AP_HYPERV_ONLINE directly with\ncpuhp_remove_state().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46864",
"url": "https://www.suse.com/security/cve/CVE-2024-46864"
},
{
"category": "external",
"summary": "SUSE Bug 1231108 for CVE-2024-46864",
"url": "https://bugzilla.suse.com/1231108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46864"
},
{
"cve": "CVE-2024-46871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX\n\n[Why \u0026 How]\nIt actually exposes \u00276\u0027 types in enum dmub_notification_type. Not 5. Using smaller\nnumber to create array dmub_callback \u0026 dmub_thread_offload has potential to access\nitem out of array bound. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46871",
"url": "https://www.suse.com/security/cve/CVE-2024-46871"
},
{
"category": "external",
"summary": "SUSE Bug 1231434 for CVE-2024-46871",
"url": "https://bugzilla.suse.com/1231434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-46871"
},
{
"cve": "CVE-2024-47663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9834: Validate frequency parameter value\n\nIn ad9834_write_frequency() clk_get_rate() can return 0. In such case\nad9834_calc_freqreg() call will lead to division by zero. Checking\n\u0027if (fout \u003e (clk_freq / 2))\u0027 doesn\u0027t protect in case of \u0027fout\u0027 is 0.\nad9834_write_frequency() is called from ad9834_write(), where fout is\ntaken from text buffer, which can contain any value.\n\nModify parameters checking.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47663",
"url": "https://www.suse.com/security/cve/CVE-2024-47663"
},
{
"category": "external",
"summary": "SUSE Bug 1231441 for CVE-2024-47663",
"url": "https://bugzilla.suse.com/1231441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47663"
},
{
"cve": "CVE-2024-47665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup\n\nDefinitely condition dma_get_cache_alignment * defined value \u003e 256\nduring driver initialization is not reason to BUG_ON(). Turn that to\ngraceful error out with -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47665",
"url": "https://www.suse.com/security/cve/CVE-2024-47665"
},
{
"category": "external",
"summary": "SUSE Bug 1231452 for CVE-2024-47665",
"url": "https://bugzilla.suse.com/1231452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47665"
},
{
"cve": "CVE-2024-47667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)\n\nErrata #i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0\n(SPRZ452D_July 2018_Revised December 2019 [1]) mentions when an\ninbound PCIe TLP spans more than two internal AXI 128-byte bursts,\nthe bus may corrupt the packet payload and the corrupt data may\ncause associated applications or the processor to hang.\n\nThe workaround for Errata #i2037 is to limit the maximum read\nrequest size and maximum payload size to 128 bytes. Add workaround\nfor Errata #i2037 here.\n\nThe errata and workaround is applicable only to AM65x SR 1.0 and\nlater versions of the silicon will have this fixed.\n\n[1] -\u003e https://www.ti.com/lit/er/sprz452i/sprz452i.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47667",
"url": "https://www.suse.com/security/cve/CVE-2024-47667"
},
{
"category": "external",
"summary": "SUSE Bug 1231481 for CVE-2024-47667",
"url": "https://bugzilla.suse.com/1231481"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47667"
},
{
"cve": "CVE-2024-47669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47669"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix state management in error path of log writing function\n\nAfter commit a694291a6211 (\"nilfs2: separate wait function from\nnilfs_segctor_write\") was applied, the log writing function\nnilfs_segctor_do_construct() was able to issue I/O requests continuously\neven if user data blocks were split into multiple logs across segments,\nbut two potential flaws were introduced in its error handling.\n\nFirst, if nilfs_segctor_begin_construction() fails while creating the\nsecond or subsequent logs, the log writing function returns without\ncalling nilfs_segctor_abort_construction(), so the writeback flag set on\npages/folios will remain uncleared. This causes page cache operations to\nhang waiting for the writeback flag. For example,\ntruncate_inode_pages_final(), which is called via nilfs_evict_inode() when\nan inode is evicted from memory, will hang.\n\nSecond, the NILFS_I_COLLECTED flag set on normal inodes remain uncleared. \nAs a result, if the next log write involves checkpoint creation, that\u0027s\nfine, but if a partial log write is performed that does not, inodes with\nNILFS_I_COLLECTED set are erroneously removed from the \"sc_dirty_files\"\nlist, and their data and b-tree blocks may not be written to the device,\ncorrupting the block mapping.\n\nFix these issues by uniformly calling nilfs_segctor_abort_construction()\non failure of each step in the loop in nilfs_segctor_do_construct(),\nhaving it clean up logs and segment usages according to progress, and\ncorrecting the conditions for calling nilfs_redirty_inodes() to ensure\nthat the NILFS_I_COLLECTED flag is cleared.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47669",
"url": "https://www.suse.com/security/cve/CVE-2024-47669"
},
{
"category": "external",
"summary": "SUSE Bug 1231474 for CVE-2024-47669",
"url": "https://bugzilla.suse.com/1231474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47669"
},
{
"cve": "CVE-2024-47670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: add bounds checking to ocfs2_xattr_find_entry()\n\nAdd a paranoia check to make sure it doesn\u0027t stray beyond valid memory\nregion containing ocfs2 xattr entries when scanning for a match. It will\nprevent out-of-bound access in case of crafted images.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47670",
"url": "https://www.suse.com/security/cve/CVE-2024-47670"
},
{
"category": "external",
"summary": "SUSE Bug 1231537 for CVE-2024-47670",
"url": "https://bugzilla.suse.com/1231537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47670"
},
{
"cve": "CVE-2024-47671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47671",
"url": "https://www.suse.com/security/cve/CVE-2024-47671"
},
{
"category": "external",
"summary": "SUSE Bug 1231541 for CVE-2024-47671",
"url": "https://bugzilla.suse.com/1231541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47671"
},
{
"cve": "CVE-2024-47679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: fix race between evice_inodes() and find_inode()\u0026iput()\n\nHi, all\n\nRecently I noticed a bug[1] in btrfs, after digged it into\nand I believe it\u0027a race in vfs.\n\nLet\u0027s assume there\u0027s a inode (ie ino 261) with i_count 1 is\ncalled by iput(), and there\u0027s a concurrent thread calling\ngeneric_shutdown_super().\n\ncpu0: cpu1:\niput() // i_count is 1\n -\u003espin_lock(inode)\n -\u003edec i_count to 0\n -\u003eiput_final() generic_shutdown_super()\n -\u003e__inode_add_lru() -\u003eevict_inodes()\n // cause some reason[2] -\u003eif (atomic_read(inode-\u003ei_count)) continue;\n // return before // inode 261 passed the above check\n // list_lru_add_obj() // and then schedule out\n -\u003espin_unlock()\n// note here: the inode 261\n// was still at sb list and hash list,\n// and I_FREEING|I_WILL_FREE was not been set\n\nbtrfs_iget()\n // after some function calls\n -\u003efind_inode()\n // found the above inode 261\n -\u003espin_lock(inode)\n // check I_FREEING|I_WILL_FREE\n // and passed\n -\u003e__iget()\n -\u003espin_unlock(inode) // schedule back\n -\u003espin_lock(inode)\n // check (I_NEW|I_FREEING|I_WILL_FREE) flags,\n // passed and set I_FREEING\niput() -\u003espin_unlock(inode)\n -\u003espin_lock(inode)\t\t\t -\u003eevict()\n // dec i_count to 0\n -\u003eiput_final()\n -\u003espin_unlock()\n -\u003eevict()\n\nNow, we have two threads simultaneously evicting\nthe same inode, which may trigger the BUG(inode-\u003ei_state \u0026 I_CLEAR)\nstatement both within clear_inode() and iput().\n\nTo fix the bug, recheck the inode-\u003ei_count after holding i_lock.\nBecause in the most scenarios, the first check is valid, and\nthe overhead of spin_lock() can be reduced.\n\nIf there is any misunderstanding, please let me know, thanks.\n\n[1]: https://lore.kernel.org/linux-btrfs/000000000000eabe1d0619c48986@google.com/\n[2]: The reason might be 1. SB_ACTIVE was removed or 2. mapping_shrinkable()\nreturn false when I reproduced the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47679",
"url": "https://www.suse.com/security/cve/CVE-2024-47679"
},
{
"category": "external",
"summary": "SUSE Bug 1231930 for CVE-2024-47679",
"url": "https://bugzilla.suse.com/1231930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47679"
},
{
"cve": "CVE-2024-47682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sd: Fix off-by-one error in sd_read_block_characteristics()\n\nFf the device returns page 0xb1 with length 8 (happens with qemu v2.x, for\nexample), sd_read_block_characteristics() may attempt an out-of-bounds\nmemory access when accessing the zoned field at offset 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47682",
"url": "https://www.suse.com/security/cve/CVE-2024-47682"
},
{
"category": "external",
"summary": "SUSE Bug 1231856 for CVE-2024-47682",
"url": "https://bugzilla.suse.com/1231856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47682"
},
{
"cve": "CVE-2024-47693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix ib_cache_setup_one error flow cleanup\n\nWhen ib_cache_update return an error, we exit ib_cache_setup_one\ninstantly with no proper cleanup, even though before this we had\nalready successfully done gid_table_setup_one, that results in\nthe kernel WARN below.\n\nDo proper cleanup using gid_table_cleanup_one before returning\nthe err in order to fix the issue.\n\nWARNING: CPU: 4 PID: 922 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x181/0x1a0\nModules linked in:\nCPU: 4 UID: 0 PID: 922 Comm: c_repro Not tainted 6.11.0-rc1+ #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:gid_table_release_one+0x181/0x1a0\nCode: 44 8b 38 75 0c e8 2f cb 34 ff 4d 8b b5 28 05 00 00 e8 23 cb 34 ff 44 89 f9 89 da 4c 89 f6 48 c7 c7 d0 58 14 83 e8 4f de 21 ff \u003c0f\u003e 0b 4c 8b 75 30 e9 54 ff ff ff 48 8 3 c4 10 5b 5d 41 5c 41 5d 41\nRSP: 0018:ffffc90002b835b0 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff811c8527\nRDX: 0000000000000000 RSI: ffffffff811c8534 RDI: 0000000000000001\nRBP: ffff8881011b3d00 R08: ffff88810b3abe00 R09: 205d303839303631\nR10: 666572207972746e R11: 72746e6520444947 R12: 0000000000000001\nR13: ffff888106390000 R14: ffff8881011f2110 R15: 0000000000000001\nFS: 00007fecc3b70800(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000340 CR3: 000000010435a001 CR4: 00000000003706b0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x94/0xa0\n ? __warn+0x9e/0x1c0\n ? gid_table_release_one+0x181/0x1a0\n ? report_bug+0x1f9/0x340\n ? gid_table_release_one+0x181/0x1a0\n ? handle_bug+0xa2/0x110\n ? exc_invalid_op+0x31/0xa0\n ? asm_exc_invalid_op+0x16/0x20\n ? __warn_printk+0xc7/0x180\n ? __warn_printk+0xd4/0x180\n ? gid_table_release_one+0x181/0x1a0\n ib_device_release+0x71/0xe0\n ? __pfx_ib_device_release+0x10/0x10\n device_release+0x44/0xd0\n kobject_put+0x135/0x3d0\n put_device+0x20/0x30\n rxe_net_add+0x7d/0xa0\n rxe_newlink+0xd7/0x190\n nldev_newlink+0x1b0/0x2a0\n ? __pfx_nldev_newlink+0x10/0x10\n rdma_nl_rcv_msg+0x1ad/0x2e0\n rdma_nl_rcv_skb.constprop.0+0x176/0x210\n netlink_unicast+0x2de/0x400\n netlink_sendmsg+0x306/0x660\n __sock_sendmsg+0x110/0x120\n ____sys_sendmsg+0x30e/0x390\n ___sys_sendmsg+0x9b/0xf0\n ? kstrtouint+0x6e/0xa0\n ? kstrtouint_from_user+0x7c/0xb0\n ? get_pid_task+0xb0/0xd0\n ? proc_fail_nth_write+0x5b/0x140\n ? __fget_light+0x9a/0x200\n ? preempt_count_add+0x47/0xa0\n __sys_sendmsg+0x61/0xd0\n do_syscall_64+0x50/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47693",
"url": "https://www.suse.com/security/cve/CVE-2024-47693"
},
{
"category": "external",
"summary": "SUSE Bug 1232013 for CVE-2024-47693",
"url": "https://bugzilla.suse.com/1232013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47693"
},
{
"cve": "CVE-2024-47695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds\n\nIn the function init_conns(), after the create_con() and create_cm() for\nloop if something fails. In the cleanup for loop after the destroy tag, we\naccess out of bound memory because cid is set to clt_path-\u003es.con_num.\n\nThis commits resets the cid to clt_path-\u003es.con_num - 1, to stay in bounds\nin the cleanup loop later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47695",
"url": "https://www.suse.com/security/cve/CVE-2024-47695"
},
{
"category": "external",
"summary": "SUSE Bug 1231931 for CVE-2024-47695",
"url": "https://bugzilla.suse.com/1231931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47695"
},
{
"cve": "CVE-2024-47696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency\n\nIn the commit aee2424246f9 (\"RDMA/iwcm: Fix a use-after-free related to\ndestroying CM IDs\"), the function flush_workqueue is invoked to flush the\nwork queue iwcm_wq.\n\nBut at that time, the work queue iwcm_wq was created via the function\nalloc_ordered_workqueue without the flag WQ_MEM_RECLAIM.\n\nBecause the current process is trying to flush the whole iwcm_wq, if\niwcm_wq doesn\u0027t have the flag WQ_MEM_RECLAIM, verify that the current\nprocess is not reclaiming memory or running on a workqueue which doesn\u0027t\nhave the flag WQ_MEM_RECLAIM as that can break forward-progress guarantee\nleading to a deadlock.\n\nThe call trace is as below:\n\n[ 125.350876][ T1430] Call Trace:\n[ 125.356281][ T1430] \u003cTASK\u003e\n[ 125.361285][ T1430] ? __warn (kernel/panic.c:693)\n[ 125.367640][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.375689][ T1430] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 125.382505][ T1430] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 125.388987][ T1430] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 125.395831][ T1430] ? asm_exc_invalid_op (arch/x86/include/asm/idtentry.h:621)\n[ 125.403125][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.410984][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.418764][ T1430] __flush_workqueue (kernel/workqueue.c:3970)\n[ 125.426021][ T1430] ? __pfx___might_resched (kernel/sched/core.c:10151)\n[ 125.433431][ T1430] ? destroy_cm_id (drivers/infiniband/core/iwcm.c:375) iw_cm\n[ 125.441209][ T1430] ? __pfx___flush_workqueue (kernel/workqueue.c:3910)\n[ 125.473900][ T1430] ? _raw_spin_lock_irqsave (arch/x86/include/asm/atomic.h:107 include/linux/atomic/atomic-arch-fallback.h:2170 include/linux/atomic/atomic-instrumented.h:1302 include/asm-generic/qspinlock.h:111 include/linux/spinlock.h:187 include/linux/spinlock_api_smp.h:111 kernel/locking/spinlock.c:162)\n[ 125.473909][ T1430] ? __pfx__raw_spin_lock_irqsave (kernel/locking/spinlock.c:161)\n[ 125.482537][ T1430] _destroy_id (drivers/infiniband/core/cma.c:2044) rdma_cm\n[ 125.495072][ T1430] nvme_rdma_free_queue (drivers/nvme/host/rdma.c:656 drivers/nvme/host/rdma.c:650) nvme_rdma\n[ 125.505827][ T1430] nvme_rdma_reset_ctrl_work (drivers/nvme/host/rdma.c:2180) nvme_rdma\n[ 125.505831][ T1430] process_one_work (kernel/workqueue.c:3231)\n[ 125.515122][ T1430] worker_thread (kernel/workqueue.c:3306 kernel/workqueue.c:3393)\n[ 125.515127][ T1430] ? __pfx_worker_thread (kernel/workqueue.c:3339)\n[ 125.531837][ T1430] kthread (kernel/kthread.c:389)\n[ 125.539864][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.550628][ T1430] ret_from_fork (arch/x86/kernel/process.c:147)\n[ 125.558840][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.558844][ T1430] ret_from_fork_asm (arch/x86/entry/entry_64.S:257)\n[ 125.566487][ T1430] \u003c/TASK\u003e\n[ 125.566488][ T1430] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47696",
"url": "https://www.suse.com/security/cve/CVE-2024-47696"
},
{
"category": "external",
"summary": "SUSE Bug 1231864 for CVE-2024-47696",
"url": "https://bugzilla.suse.com/1231864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47696"
},
{
"cve": "CVE-2024-47697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error\n\nEnsure index in rtl2830_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47697",
"url": "https://www.suse.com/security/cve/CVE-2024-47697"
},
{
"category": "external",
"summary": "SUSE Bug 1231858 for CVE-2024-47697",
"url": "https://bugzilla.suse.com/1231858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47697"
},
{
"cve": "CVE-2024-47698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error\n\nEnsure index in rtl2832_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.\n\n[hverkuil: added fixes tag, rtl2830_pid_filter -\u003e rtl2832_pid_filter in logmsg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47698",
"url": "https://www.suse.com/security/cve/CVE-2024-47698"
},
{
"category": "external",
"summary": "SUSE Bug 1231859 for CVE-2024-47698",
"url": "https://bugzilla.suse.com/1231859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47698"
},
{
"cve": "CVE-2024-47699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47699"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential null-ptr-deref in nilfs_btree_insert()\n\nPatch series \"nilfs2: fix potential issues with empty b-tree nodes\".\n\nThis series addresses three potential issues with empty b-tree nodes that\ncan occur with corrupted filesystem images, including one recently\ndiscovered by syzbot.\n\n\nThis patch (of 3):\n\nIf a b-tree is broken on the device, and the b-tree height is greater than\n2 (the level of the root node is greater than 1) even if the number of\nchild nodes of the b-tree root is 0, a NULL pointer dereference occurs in\nnilfs_btree_prepare_insert(), which is called from nilfs_btree_insert().\n\nThis is because, when the number of child nodes of the b-tree root is 0,\nnilfs_btree_do_lookup() does not set the block buffer head in any of\npath[x].bp_bh, leaving it as the initial value of NULL, but if the level\nof the b-tree root node is greater than 1, nilfs_btree_get_nonroot_node(),\nwhich accesses the buffer memory of path[x].bp_bh, is called.\n\nFix this issue by adding a check to nilfs_btree_root_broken(), which\nperforms sanity checks when reading the root node from the device, to\ndetect this inconsistency.\n\nThanks to Lizhi Xu for trying to solve the bug and clarifying the cause\nearly on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47699",
"url": "https://www.suse.com/security/cve/CVE-2024-47699"
},
{
"category": "external",
"summary": "SUSE Bug 1231916 for CVE-2024-47699",
"url": "https://bugzilla.suse.com/1231916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47699"
},
{
"cve": "CVE-2024-47701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid OOB when system.data xattr changes underneath the filesystem\n\nWhen looking up for an entry in an inlined directory, if e_value_offs is\nchanged underneath the filesystem by some change in the block device, it\nwill lead to an out-of-bounds access that KASAN detects as an UAF.\n\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.\nloop0: detected capacity change from 2048 to 2047\n==================================================================\nBUG: KASAN: use-after-free in ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\nRead of size 1 at addr ffff88803e91130f by task syz-executor269/5103\n\nCPU: 0 UID: 0 PID: 5103 Comm: syz-executor269 Not tainted 6.11.0-rc4-syzkaller #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\n ext4_find_inline_entry+0x4be/0x5e0 fs/ext4/inline.c:1697\n __ext4_find_entry+0x2b4/0x1b30 fs/ext4/namei.c:1573\n ext4_lookup_entry fs/ext4/namei.c:1727 [inline]\n ext4_lookup+0x15f/0x750 fs/ext4/namei.c:1795\n lookup_one_qstr_excl+0x11f/0x260 fs/namei.c:1633\n filename_create+0x297/0x540 fs/namei.c:3980\n do_symlinkat+0xf9/0x3a0 fs/namei.c:4587\n __do_sys_symlinkat fs/namei.c:4610 [inline]\n __se_sys_symlinkat fs/namei.c:4607 [inline]\n __x64_sys_symlinkat+0x95/0xb0 fs/namei.c:4607\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f3e73ced469\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff4d40c258 EFLAGS: 00000246 ORIG_RAX: 000000000000010a\nRAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f3e73ced469\nRDX: 0000000020000200 RSI: 00000000ffffff9c RDI: 00000000200001c0\nRBP: 0000000000000000 R08: 00007fff4d40c290 R09: 00007fff4d40c290\nR10: 0023706f6f6c2f76 R11: 0000000000000246 R12: 00007fff4d40c27c\nR13: 0000000000000003 R14: 431bde82d7b634db R15: 00007fff4d40c2b0\n \u003c/TASK\u003e\n\nCalling ext4_xattr_ibody_find right after reading the inode with\next4_get_inode_loc will lead to a check of the validity of the xattrs,\navoiding this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47701",
"url": "https://www.suse.com/security/cve/CVE-2024-47701"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1231920 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1231920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47701"
},
{
"cve": "CVE-2024-47709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry().\n\nsyzbot reported a warning in bcm_release(). [0]\n\nThe blamed change fixed another warning that is triggered when\nconnect() is issued again for a socket whose connect()ed device has\nbeen unregistered.\n\nHowever, if the socket is just close()d without the 2nd connect(), the\nremaining bo-\u003ebcm_proc_read triggers unnecessary remove_proc_entry()\nin bcm_release().\n\nLet\u0027s clear bo-\u003ebcm_proc_read after remove_proc_entry() in bcm_notify().\n\n[0]\nname \u00274986\u0027\nWARNING: CPU: 0 PID: 5234 at fs/proc/generic.c:711 remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nModules linked in:\nCPU: 0 UID: 0 PID: 5234 Comm: syz-executor606 Not tainted 6.11.0-rc5-syzkaller-00178-g5517ae241919 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nRIP: 0010:remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nCode: ff eb 05 e8 cb 1e 5e ff 48 8b 5c 24 10 48 c7 c7 e0 f7 aa 8e e8 2a 38 8e 09 90 48 c7 c7 60 3a 1b 8c 48 89 de e8 da 42 20 ff 90 \u003c0f\u003e 0b 90 90 48 8b 44 24 18 48 c7 44 24 40 0e 36 e0 45 49 c7 04 07\nRSP: 0018:ffffc9000345fa20 EFLAGS: 00010246\nRAX: 2a2d0aee2eb64600 RBX: ffff888032f1f548 RCX: ffff888029431e00\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffc9000345fb08 R08: ffffffff8155b2f2 R09: 1ffff1101710519a\nR10: dffffc0000000000 R11: ffffed101710519b R12: ffff888011d38640\nR13: 0000000000000004 R14: 0000000000000000 R15: dffffc0000000000\nFS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fcfb52722f0 CR3: 000000000e734000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n bcm_release+0x250/0x880 net/can/bcm.c:1578\n __sock_release net/socket.c:659 [inline]\n sock_close+0xbc/0x240 net/socket.c:1421\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fcfb51ee969\nCode: Unable to access opcode bytes at 0x7fcfb51ee93f.\nRSP: 002b:00007ffce0109ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcfb51ee969\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\nRBP: 00007fcfb526f3b0 R08: ffffffffffffffb8 R09: 0000555500000000\nR10: 0000555500000000 R11: 0000000000000246 R12: 00007fcfb526f3b0\nR13: 0000000000000000 R14: 00007fcfb5271ee0 R15: 00007fcfb51bf160\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47709",
"url": "https://www.suse.com/security/cve/CVE-2024-47709"
},
{
"category": "external",
"summary": "SUSE Bug 1232048 for CVE-2024-47709",
"url": "https://bugzilla.suse.com/1232048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47709"
},
{
"cve": "CVE-2024-47712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param\n\nIn the `wilc_parse_join_bss_param` function, the TSF field of the `ies`\nstructure is accessed after the RCU read-side critical section is\nunlocked. According to RCU usage rules, this is illegal. Reusing this\npointer can lead to unpredictable behavior, including accessing memory\nthat has been updated or causing use-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the TSF value is now stored in a local variable\n`ies_tsf` before the RCU lock is released. The `param-\u003etsf_lo` field is\nthen assigned using this local variable, ensuring that the TSF value is\nsafely accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47712",
"url": "https://www.suse.com/security/cve/CVE-2024-47712"
},
{
"category": "external",
"summary": "SUSE Bug 1232017 for CVE-2024-47712",
"url": "https://bugzilla.suse.com/1232017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47712"
},
{
"cve": "CVE-2024-47713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47713"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()\n\nSince \u0027__dev_queue_xmit()\u0027 should be called with interrupts enabled,\nthe following backtrace:\n\nieee80211_do_stop()\n ...\n spin_lock_irqsave(\u0026local-\u003equeue_stop_reason_lock, flags)\n ...\n ieee80211_free_txskb()\n ieee80211_report_used_skb()\n ieee80211_report_ack_skb()\n cfg80211_mgmt_tx_status_ext()\n nl80211_frame_tx_status()\n genlmsg_multicast_netns()\n genlmsg_multicast_netns_filtered()\n nlmsg_multicast_filtered()\n\t netlink_broadcast_filtered()\n\t do_one_broadcast()\n\t netlink_broadcast_deliver()\n\t __netlink_sendskb()\n\t netlink_deliver_tap()\n\t __netlink_deliver_tap_skb()\n\t dev_queue_xmit()\n\t __dev_queue_xmit() ; with IRQS disabled\n ...\n spin_unlock_irqrestore(\u0026local-\u003equeue_stop_reason_lock, flags)\n\nissues the warning (as reported by syzbot reproducer):\n\nWARNING: CPU: 2 PID: 5128 at kernel/softirq.c:362 __local_bh_enable_ip+0xc3/0x120\n\nFix this by implementing a two-phase skb reclamation in\n\u0027ieee80211_do_stop()\u0027, where actual work is performed\noutside of a section with interrupts disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47713",
"url": "https://www.suse.com/security/cve/CVE-2024-47713"
},
{
"category": "external",
"summary": "SUSE Bug 1232016 for CVE-2024-47713",
"url": "https://bugzilla.suse.com/1232016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47713"
},
{
"cve": "CVE-2024-47718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47718"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: always wait for both firmware loading attempts\n\nIn \u0027rtw_wait_firmware_completion()\u0027, always wait for both (regular and\nwowlan) firmware loading attempts. Otherwise if \u0027rtw_usb_intf_init()\u0027\nhas failed in \u0027rtw_usb_probe()\u0027, \u0027rtw_usb_disconnect()\u0027 may issue\n\u0027ieee80211_free_hw()\u0027 when one of \u0027rtw_load_firmware_cb()\u0027 (usually\nthe wowlan one) is still in progress, causing UAF detected by KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47718",
"url": "https://www.suse.com/security/cve/CVE-2024-47718"
},
{
"category": "external",
"summary": "SUSE Bug 1232015 for CVE-2024-47718",
"url": "https://bugzilla.suse.com/1232015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47718"
},
{
"cve": "CVE-2024-47723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix out-of-bounds in dbNextAG() and diAlloc()\n\nIn dbNextAG() , there is no check for the case where bmp-\u003edb_numag is\ngreater or same than MAXAG due to a polluted image, which causes an\nout-of-bounds. Therefore, a bounds check should be added in dbMount().\n\nAnd in dbNextAG(), a check for the case where agpref is greater than\nbmp-\u003edb_numag should be added, so an out-of-bounds exception should be\nprevented.\n\nAdditionally, a check for the case where agno is greater or same than\nMAXAG should be added in diAlloc() to prevent out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47723",
"url": "https://www.suse.com/security/cve/CVE-2024-47723"
},
{
"category": "external",
"summary": "SUSE Bug 1232050 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "external",
"summary": "SUSE Bug 1232051 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-47723"
},
{
"cve": "CVE-2024-47728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error\n\nFor all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT} as input\narguments, zero the value for the case of an error as otherwise it could leak\nmemory. For tracing, it is not needed given CAP_PERFMON can already read all\nkernel memory anyway hence bpf_get_func_arg() and bpf_get_func_ret() is skipped\nin here.\n\nAlso, the MTU helpers mtu_len pointer value is being written but also read.\nTechnically, the MEM_UNINIT should not be there in order to always force init.\nRemoving MEM_UNINIT needs more verifier rework though: MEM_UNINIT right now\nimplies two things actually: i) write into memory, ii) memory does not have\nto be initialized. If we lift MEM_UNINIT, it then becomes: i) read into memory,\nii) memory must be initialized. This means that for bpf_*_check_mtu() we\u0027re\nreadding the issue we\u0027re trying to fix, that is, it would then be able to\nwrite back into things like .rodata BPF maps. Follow-up work will rework the\nMEM_UNINIT semantics such that the intent can be better expressed. For now\njust clear the *mtu_len on error path which can be lifted later again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47728",
"url": "https://www.suse.com/security/cve/CVE-2024-47728"
},
{
"category": "external",
"summary": "SUSE Bug 1232076 for CVE-2024-47728",
"url": "https://bugzilla.suse.com/1232076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47728"
},
{
"cve": "CVE-2024-47735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled\n\nFix missuse of spin_lock_irq()/spin_unlock_irq() when\nspin_lock_irqsave()/spin_lock_irqrestore() was hold.\n\nThis was discovered through the lock debugging, and the corresponding\nlog is as follows:\n\nraw_local_irq_restore() called with IRQs enabled\nWARNING: CPU: 96 PID: 2074 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x30/0x40\n...\nCall trace:\n warn_bogus_irq_restore+0x30/0x40\n _raw_spin_unlock_irqrestore+0x84/0xc8\n add_qp_to_list+0x11c/0x148 [hns_roce_hw_v2]\n hns_roce_create_qp_common.constprop.0+0x240/0x780 [hns_roce_hw_v2]\n hns_roce_create_qp+0x98/0x160 [hns_roce_hw_v2]\n create_qp+0x138/0x258\n ib_create_qp_kernel+0x50/0xe8\n create_mad_qp+0xa8/0x128\n ib_mad_port_open+0x218/0x448\n ib_mad_init_device+0x70/0x1f8\n add_client_context+0xfc/0x220\n enable_device_and_get+0xd0/0x140\n ib_register_device.part.0+0xf4/0x1c8\n ib_register_device+0x34/0x50\n hns_roce_register_device+0x174/0x3d0 [hns_roce_hw_v2]\n hns_roce_init+0xfc/0x2c0 [hns_roce_hw_v2]\n __hns_roce_hw_v2_init_instance+0x7c/0x1d0 [hns_roce_hw_v2]\n hns_roce_hw_v2_init_instance+0x9c/0x180 [hns_roce_hw_v2]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47735",
"url": "https://www.suse.com/security/cve/CVE-2024-47735"
},
{
"category": "external",
"summary": "SUSE Bug 1232111 for CVE-2024-47735",
"url": "https://bugzilla.suse.com/1232111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47735"
},
{
"cve": "CVE-2024-47737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: call cache_put if xdr_reserve_space returns NULL\n\nIf not enough buffer space available, but idmap_lookup has triggered\nlookup_fn which calls cache_get and returns successfully. Then we\nmissed to call cache_put here which pairs with cache_get.\n\nReviwed-by: Jeff Layton \u003cjlayton@kernel.org\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47737",
"url": "https://www.suse.com/security/cve/CVE-2024-47737"
},
{
"category": "external",
"summary": "SUSE Bug 1232056 for CVE-2024-47737",
"url": "https://bugzilla.suse.com/1232056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47737"
},
{
"cve": "CVE-2024-47742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Block path traversal\n\nMost firmware names are hardcoded strings, or are constructed from fairly\nconstrained format strings where the dynamic parts are just some hex\nnumbers or such.\n\nHowever, there are a couple codepaths in the kernel where firmware file\nnames contain string components that are passed through from a device or\nsemi-privileged userspace; the ones I could find (not counting interfaces\nthat require root privileges) are:\n\n - lpfc_sli4_request_firmware_update() seems to construct the firmware\n filename from \"ModelName\", a string that was previously parsed out of\n some descriptor (\"Vital Product Data\") in lpfc_fill_vpd()\n - nfp_net_fw_find() seems to construct a firmware filename from a model\n name coming from nfp_hwinfo_lookup(pf-\u003ehwinfo, \"nffw.partno\"), which I\n think parses some descriptor that was read from the device.\n (But this case likely isn\u0027t exploitable because the format string looks\n like \"netronome/nic_%s\", and there shouldn\u0027t be any *folders* starting\n with \"netronome/nic_\". The previous case was different because there,\n the \"%s\" is *at the start* of the format string.)\n - module_flash_fw_schedule() is reachable from the\n ETHTOOL_MSG_MODULE_FW_FLASH_ACT netlink command, which is marked as\n GENL_UNS_ADMIN_PERM (meaning CAP_NET_ADMIN inside a user namespace is\n enough to pass the privilege check), and takes a userspace-provided\n firmware name.\n (But I think to reach this case, you need to have CAP_NET_ADMIN over a\n network namespace that a special kind of ethernet device is mapped into,\n so I think this is not a viable attack path in practice.)\n\nFix it by rejecting any firmware names containing \"..\" path components.\n\nFor what it\u0027s worth, I went looking and haven\u0027t found any USB device\ndrivers that use the firmware loader dangerously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47742",
"url": "https://www.suse.com/security/cve/CVE-2024-47742"
},
{
"category": "external",
"summary": "SUSE Bug 1232126 for CVE-2024-47742",
"url": "https://bugzilla.suse.com/1232126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47742"
},
{
"cve": "CVE-2024-47745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47745",
"url": "https://www.suse.com/security/cve/CVE-2024-47745"
},
{
"category": "external",
"summary": "SUSE Bug 1232135 for CVE-2024-47745",
"url": "https://bugzilla.suse.com/1232135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47745"
},
{
"cve": "CVE-2024-47749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cxgb4: Added NULL check for lookup_atid\n\nThe lookup_atid() function can return NULL if the ATID is\ninvalid or does not exist in the identifier table, which\ncould lead to dereferencing a null pointer without a\ncheck in the `act_establish()` and `act_open_rpl()` functions.\nAdd a NULL check to prevent null pointer dereferencing.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47749",
"url": "https://www.suse.com/security/cve/CVE-2024-47749"
},
{
"category": "external",
"summary": "SUSE Bug 1232180 for CVE-2024-47749",
"url": "https://bugzilla.suse.com/1232180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47749"
},
{
"cve": "CVE-2024-47756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Fix if-statement expression in ks_pcie_quirk()\n\nThis code accidentally uses \u0026\u0026 where || was intended. It potentially\nresults in a NULL dereference.\n\nThus, fix the if-statement expression to use the correct condition.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47756",
"url": "https://www.suse.com/security/cve/CVE-2024-47756"
},
{
"category": "external",
"summary": "SUSE Bug 1232185 for CVE-2024-47756",
"url": "https://bugzilla.suse.com/1232185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-47756"
},
{
"cve": "CVE-2024-47757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential oob read in nilfs_btree_check_delete()\n\nThe function nilfs_btree_check_delete(), which checks whether degeneration\nto direct mapping occurs before deleting a b-tree entry, causes memory\naccess outside the block buffer when retrieving the maximum key if the\nroot node has no entries.\n\nThis does not usually happen because b-tree mappings with 0 child nodes\nare never created by mkfs.nilfs2 or nilfs2 itself. However, it can happen\nif the b-tree root node read from a device is configured that way, so fix\nthis potential issue by adding a check for that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47757",
"url": "https://www.suse.com/security/cve/CVE-2024-47757"
},
{
"category": "external",
"summary": "SUSE Bug 1232187 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "external",
"summary": "SUSE Bug 1232188 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-47757"
},
{
"cve": "CVE-2024-49850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos\n\nIn case of malformed relocation record of kind BPF_CORE_TYPE_ID_LOCAL\nreferencing a non-existing BTF type, function bpf_core_calc_relo_insn\nwould cause a null pointer deference.\n\nFix this by adding a proper check upper in call stack, as malformed\nrelocation records could be passed from user space.\n\nSimplest reproducer is a program:\n\n r0 = 0\n exit\n\nWith a single relocation record:\n\n .insn_off = 0, /* patch first instruction */\n .type_id = 100500, /* this type id does not exist */\n .access_str_off = 6, /* offset of string \"0\" */\n .kind = BPF_CORE_TYPE_ID_LOCAL,\n\nSee the link for original reproducer or next commit for a test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49850",
"url": "https://www.suse.com/security/cve/CVE-2024-49850"
},
{
"category": "external",
"summary": "SUSE Bug 1232189 for CVE-2024-49850",
"url": "https://bugzilla.suse.com/1232189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49850"
},
{
"cve": "CVE-2024-49851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Clean up TPM space after command failure\n\ntpm_dev_transmit prepares the TPM space before attempting command\ntransmission. However if the command fails no rollback of this\npreparation is done. This can result in transient handles being leaked\nif the device is subsequently closed with no further commands performed.\n\nFix this by flushing the space in the event of command transmission\nfailure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49851",
"url": "https://www.suse.com/security/cve/CVE-2024-49851"
},
{
"category": "external",
"summary": "SUSE Bug 1232134 for CVE-2024-49851",
"url": "https://bugzilla.suse.com/1232134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49851"
},
{
"cve": "CVE-2024-49852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()\n\nThe kref_put() function will call nport-\u003erelease if the refcount drops to\nzero. The nport-\u003erelease release function is _efc_nport_free() which frees\n\"nport\". But then we dereference \"nport\" on the next line which is a use\nafter free. Re-order these lines to avoid the use after free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49852",
"url": "https://www.suse.com/security/cve/CVE-2024-49852"
},
{
"category": "external",
"summary": "SUSE Bug 1232819 for CVE-2024-49852",
"url": "https://bugzilla.suse.com/1232819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49852"
},
{
"cve": "CVE-2024-49855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix race between timeout and normal completion\n\nIf request timetout is handled by nbd_requeue_cmd(), normal completion\nhas to be stopped for avoiding to complete this requeued request, other\nuse-after-free can be triggered.\n\nFix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantime\nmake sure that cmd-\u003elock is grabbed for clearing the flag and the\nrequeue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49855",
"url": "https://www.suse.com/security/cve/CVE-2024-49855"
},
{
"category": "external",
"summary": "SUSE Bug 1232195 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "external",
"summary": "SUSE Bug 1232900 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-49855"
},
{
"cve": "CVE-2024-49861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix helper writes to read-only maps\n\nLonial found an issue that despite user- and BPF-side frozen BPF map\n(like in case of .rodata), it was still possible to write into it from\na BPF program side through specific helpers having ARG_PTR_TO_{LONG,INT}\nas arguments.\n\nIn check_func_arg() when the argument is as mentioned, the meta-\u003eraw_mode\nis never set. Later, check_helper_mem_access(), under the case of\nPTR_TO_MAP_VALUE as register base type, it assumes BPF_READ for the\nsubsequent call to check_map_access_type() and given the BPF map is\nread-only it succeeds.\n\nThe helpers really need to be annotated as ARG_PTR_TO_{LONG,INT} | MEM_UNINIT\nwhen results are written into them as opposed to read out of them. The\nlatter indicates that it\u0027s okay to pass a pointer to uninitialized memory\nas the memory is written to anyway.\n\nHowever, ARG_PTR_TO_{LONG,INT} is a special case of ARG_PTR_TO_FIXED_SIZE_MEM\njust with additional alignment requirement. So it is better to just get\nrid of the ARG_PTR_TO_{LONG,INT} special cases altogether and reuse the\nfixed size memory types. For this, add MEM_ALIGNED to additionally ensure\nalignment given these helpers write directly into the args via *\u003cptr\u003e = val.\nThe .arg*_size has been initialized reflecting the actual sizeof(*\u003cptr\u003e).\n\nMEM_ALIGNED can only be used in combination with MEM_FIXED_SIZE annotated\nargument types, since in !MEM_FIXED_SIZE cases the verifier does not know\nthe buffer size a priori and therefore cannot blindly write *\u003cptr\u003e = val.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49861",
"url": "https://www.suse.com/security/cve/CVE-2024-49861"
},
{
"category": "external",
"summary": "SUSE Bug 1232254 for CVE-2024-49861",
"url": "https://bugzilla.suse.com/1232254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49861"
},
{
"cve": "CVE-2024-49863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost/scsi: null-ptr-dereference in vhost_scsi_get_req()\n\nSince commit 3f8ca2e115e5 (\"vhost/scsi: Extract common handling code\nfrom control queue handler\") a null pointer dereference bug can be\ntriggered when guest sends an SCSI AN request.\n\nIn vhost_scsi_ctl_handle_vq(), `vc.target` is assigned with\n`\u0026v_req.tmf.lun[1]` within a switch-case block and is then passed to\nvhost_scsi_get_req() which extracts `vc-\u003ereq` and `tpg`. However, for\na `VIRTIO_SCSI_T_AN_*` request, tpg is not required, so `vc.target` is\nset to NULL in this branch. Later, in vhost_scsi_get_req(),\n`vc-\u003etarget` is dereferenced without being checked, leading to a null\npointer dereference bug. This bug can be triggered from guest.\n\nWhen this bug occurs, the vhost_worker process is killed while holding\n`vq-\u003emutex` and the corresponding tpg will remain occupied\nindefinitely.\n\nBelow is the KASAN report:\nOops: general protection fault, probably for non-canonical address\n0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 PID: 840 Comm: poc Not tainted 6.10.0+ #1\nHardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS\n1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:vhost_scsi_get_req+0x165/0x3a0\nCode: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 2b 02 00 00\n48 b8 00 00 00 00 00 fc ff df 4d 8b 65 30 4c 89 e2 48 c1 ea 03 \u003c0f\u003e b6\n04 02 4c 89 e2 83 e2 07 38 d0 7f 08 84 c0 0f 85 be 01 00 00\nRSP: 0018:ffff888017affb50 EFLAGS: 00010246\nRAX: dffffc0000000000 RBX: ffff88801b000000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888017affcb8\nRBP: ffff888017affb80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff888017affc88 R14: ffff888017affd1c R15: ffff888017993000\nFS: 000055556e076500(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200027c0 CR3: 0000000010ed0004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x86/0xa0\n ? die_addr+0x4b/0xd0\n ? exc_general_protection+0x163/0x260\n ? asm_exc_general_protection+0x27/0x30\n ? vhost_scsi_get_req+0x165/0x3a0\n vhost_scsi_ctl_handle_vq+0x2a4/0xca0\n ? __pfx_vhost_scsi_ctl_handle_vq+0x10/0x10\n ? __switch_to+0x721/0xeb0\n ? __schedule+0xda5/0x5710\n ? __kasan_check_write+0x14/0x30\n ? _raw_spin_lock+0x82/0xf0\n vhost_scsi_ctl_handle_kick+0x52/0x90\n vhost_run_work_list+0x134/0x1b0\n vhost_task_fn+0x121/0x350\n...\n \u003c/TASK\u003e\n---[ end trace 0000000000000000 ]---\n\nLet\u0027s add a check in vhost_scsi_get_req.\n\n[whitespace fixes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49863",
"url": "https://www.suse.com/security/cve/CVE-2024-49863"
},
{
"category": "external",
"summary": "SUSE Bug 1232255 for CVE-2024-49863",
"url": "https://bugzilla.suse.com/1232255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49863"
},
{
"cve": "CVE-2024-49868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a NULL pointer dereference when failed to start a new trasacntion\n\n[BUG]\nSyzbot reported a NULL pointer dereference with the following crash:\n\n FAULT_INJECTION: forcing a failure.\n start_transaction+0x830/0x1670 fs/btrfs/transaction.c:676\n prepare_to_relocate+0x31f/0x4c0 fs/btrfs/relocation.c:3642\n relocate_block_group+0x169/0xd20 fs/btrfs/relocation.c:3678\n ...\n BTRFS info (device loop0): balance: ended with status: -12\n Oops: general protection fault, probably for non-canonical address 0xdffffc00000000cc: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000660-0x0000000000000667]\n RIP: 0010:btrfs_update_reloc_root+0x362/0xa80 fs/btrfs/relocation.c:926\n Call Trace:\n \u003cTASK\u003e\n commit_fs_roots+0x2ee/0x720 fs/btrfs/transaction.c:1496\n btrfs_commit_transaction+0xfaf/0x3740 fs/btrfs/transaction.c:2430\n del_balance_item fs/btrfs/volumes.c:3678 [inline]\n reset_balance_state+0x25e/0x3c0 fs/btrfs/volumes.c:3742\n btrfs_balance+0xead/0x10c0 fs/btrfs/volumes.c:4574\n btrfs_ioctl_balance+0x493/0x7c0 fs/btrfs/ioctl.c:3673\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nThe allocation failure happens at the start_transaction() inside\nprepare_to_relocate(), and during the error handling we call\nunset_reloc_control(), which makes fs_info-\u003ebalance_ctl to be NULL.\n\nThen we continue the error path cleanup in btrfs_balance() by calling\nreset_balance_state() which will call del_balance_item() to fully delete\nthe balance item in the root tree.\n\nHowever during the small window between set_reloc_contrl() and\nunset_reloc_control(), we can have a subvolume tree update and created a\nreloc_root for that subvolume.\n\nThen we go into the final btrfs_commit_transaction() of\ndel_balance_item(), and into btrfs_update_reloc_root() inside\ncommit_fs_roots().\n\nThat function checks if fs_info-\u003ereloc_ctl is in the merge_reloc_tree\nstage, but since fs_info-\u003ereloc_ctl is NULL, it results a NULL pointer\ndereference.\n\n[FIX]\nJust add extra check on fs_info-\u003ereloc_ctl inside\nbtrfs_update_reloc_root(), before checking\nfs_info-\u003ereloc_ctl-\u003emerge_reloc_tree.\n\nThat DEAD_RELOC_TREE handling is to prevent further modification to the\nreloc tree during merge stage, but since there is no reloc_ctl at all,\nwe do not need to bother that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49868",
"url": "https://www.suse.com/security/cve/CVE-2024-49868"
},
{
"category": "external",
"summary": "SUSE Bug 1232272 for CVE-2024-49868",
"url": "https://bugzilla.suse.com/1232272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49868"
},
{
"cve": "CVE-2024-49870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix dentry leak in cachefiles_open_file()\n\nA dentry leak may be caused when a lookup cookie and a cull are concurrent:\n\n P1 | P2\n-----------------------------------------------------------\ncachefiles_lookup_cookie\n cachefiles_look_up_object\n lookup_one_positive_unlocked\n // get dentry\n cachefiles_cull\n inode-\u003ei_flags |= S_KERNEL_FILE;\n cachefiles_open_file\n cachefiles_mark_inode_in_use\n __cachefiles_mark_inode_in_use\n can_use = false\n if (!(inode-\u003ei_flags \u0026 S_KERNEL_FILE))\n can_use = true\n\t return false\n return false\n // Returns an error but doesn\u0027t put dentry\n\nAfter that the following WARNING will be triggered when the backend folder\nis umounted:\n\n==================================================================\nBUG: Dentry 000000008ad87947{i=7a,n=Dx_1_1.img} still in use (1) [unmount of ext4 sda]\nWARNING: CPU: 4 PID: 359261 at fs/dcache.c:1767 umount_check+0x5d/0x70\nCPU: 4 PID: 359261 Comm: umount Not tainted 6.6.0-dirty #25\nRIP: 0010:umount_check+0x5d/0x70\nCall Trace:\n \u003cTASK\u003e\n d_walk+0xda/0x2b0\n do_one_tree+0x20/0x40\n shrink_dcache_for_umount+0x2c/0x90\n generic_shutdown_super+0x20/0x160\n kill_block_super+0x1a/0x40\n ext4_kill_sb+0x22/0x40\n deactivate_locked_super+0x35/0x80\n cleanup_mnt+0x104/0x160\n==================================================================\n\nWhether cachefiles_open_file() returns true or false, the reference count\nobtained by lookup_positive_unlocked() in cachefiles_look_up_object()\nshould be released.\n\nTherefore release that reference count in cachefiles_look_up_object() to\nfix the above issue and simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49870",
"url": "https://www.suse.com/security/cve/CVE-2024-49870"
},
{
"category": "external",
"summary": "SUSE Bug 1232279 for CVE-2024-49870",
"url": "https://bugzilla.suse.com/1232279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49870"
},
{
"cve": "CVE-2024-49871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: adp5589-keys - fix NULL pointer dereference\n\nWe register a devm action to call adp5589_clear_config() and then pass\nthe i2c client as argument so that we can call i2c_get_clientdata() in\norder to get our device object. However, i2c_set_clientdata() is only\nbeing set at the end of the probe function which means that we\u0027ll get a\nNULL pointer dereference in case the probe function fails early.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49871",
"url": "https://www.suse.com/security/cve/CVE-2024-49871"
},
{
"category": "external",
"summary": "SUSE Bug 1232287 for CVE-2024-49871",
"url": "https://bugzilla.suse.com/1232287"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49871"
},
{
"cve": "CVE-2024-49875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: map the EBADMSG to nfserr_io to avoid warning\n\nExt4 will throw -EBADMSG through ext4_readdir when a checksum error\noccurs, resulting in the following WARNING.\n\nFix it by mapping EBADMSG to nfserr_io.\n\nnfsd_buffered_readdir\n iterate_dir // -EBADMSG -74\n ext4_readdir // .iterate_shared\n ext4_dx_readdir\n ext4_htree_fill_tree\n htree_dirblock_to_tree\n ext4_read_dirblock\n __ext4_read_dirblock\n ext4_dirblock_csum_verify\n warn_no_space_for_csum\n __warn_no_space_for_csum\n return ERR_PTR(-EFSBADCRC) // -EBADMSG -74\n nfserrno // WARNING\n\n[ 161.115610] ------------[ cut here ]------------\n[ 161.116465] nfsd: non-standard errno: -74\n[ 161.117315] WARNING: CPU: 1 PID: 780 at fs/nfsd/nfsproc.c:878 nfserrno+0x9d/0xd0\n[ 161.118596] Modules linked in:\n[ 161.119243] CPU: 1 PID: 780 Comm: nfsd Not tainted 5.10.0-00014-g79679361fd5d #138\n[ 161.120684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qe\nmu.org 04/01/2014\n[ 161.123601] RIP: 0010:nfserrno+0x9d/0xd0\n[ 161.124676] Code: 0f 87 da 30 dd 00 83 e3 01 b8 00 00 00 05 75 d7 44 89 ee 48 c7 c7 c0 57 24 98 89 44 24 04 c6\n 05 ce 2b 61 03 01 e8 99 20 d8 00 \u003c0f\u003e 0b 8b 44 24 04 eb b5 4c 89 e6 48 c7 c7 a0 6d a4 99 e8 cc 15 33\n[ 161.127797] RSP: 0018:ffffc90000e2f9c0 EFLAGS: 00010286\n[ 161.128794] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n[ 161.130089] RDX: 1ffff1103ee16f6d RSI: 0000000000000008 RDI: fffff520001c5f2a\n[ 161.131379] RBP: 0000000000000022 R08: 0000000000000001 R09: ffff8881f70c1827\n[ 161.132664] R10: ffffed103ee18304 R11: 0000000000000001 R12: 0000000000000021\n[ 161.133949] R13: 00000000ffffffb6 R14: ffff8881317c0000 R15: ffffc90000e2fbd8\n[ 161.135244] FS: 0000000000000000(0000) GS:ffff8881f7080000(0000) knlGS:0000000000000000\n[ 161.136695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 161.137761] CR2: 00007fcaad70b348 CR3: 0000000144256006 CR4: 0000000000770ee0\n[ 161.139041] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 161.140291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 161.141519] PKRU: 55555554\n[ 161.142076] Call Trace:\n[ 161.142575] ? __warn+0x9b/0x140\n[ 161.143229] ? nfserrno+0x9d/0xd0\n[ 161.143872] ? report_bug+0x125/0x150\n[ 161.144595] ? handle_bug+0x41/0x90\n[ 161.145284] ? exc_invalid_op+0x14/0x70\n[ 161.146009] ? asm_exc_invalid_op+0x12/0x20\n[ 161.146816] ? nfserrno+0x9d/0xd0\n[ 161.147487] nfsd_buffered_readdir+0x28b/0x2b0\n[ 161.148333] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.149258] ? nfsd_buffered_filldir+0xf0/0xf0\n[ 161.150093] ? wait_for_concurrent_writes+0x170/0x170\n[ 161.151004] ? generic_file_llseek_size+0x48/0x160\n[ 161.151895] nfsd_readdir+0x132/0x190\n[ 161.152606] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.153516] ? nfsd_unlink+0x380/0x380\n[ 161.154256] ? override_creds+0x45/0x60\n[ 161.155006] nfsd4_encode_readdir+0x21a/0x3d0\n[ 161.155850] ? nfsd4_encode_readlink+0x210/0x210\n[ 161.156731] ? write_bytes_to_xdr_buf+0x97/0xe0\n[ 161.157598] ? __write_bytes_to_xdr_buf+0xd0/0xd0\n[ 161.158494] ? lock_downgrade+0x90/0x90\n[ 161.159232] ? nfs4svc_decode_voidarg+0x10/0x10\n[ 161.160092] nfsd4_encode_operation+0x15a/0x440\n[ 161.160959] nfsd4_proc_compound+0x718/0xe90\n[ 161.161818] nfsd_dispatch+0x18e/0x2c0\n[ 161.162586] svc_process_common+0x786/0xc50\n[ 161.163403] ? nfsd_svc+0x380/0x380\n[ 161.164137] ? svc_printk+0x160/0x160\n[ 161.164846] ? svc_xprt_do_enqueue.part.0+0x365/0x380\n[ 161.165808] ? nfsd_svc+0x380/0x380\n[ 161.166523] ? rcu_is_watching+0x23/0x40\n[ 161.167309] svc_process+0x1a5/0x200\n[ 161.168019] nfsd+0x1f5/0x380\n[ 161.168663] ? nfsd_shutdown_threads+0x260/0x260\n[ 161.169554] kthread+0x1c4/0x210\n[ 161.170224] ? kthread_insert_work_sanity_check+0x80/0x80\n[ 161.171246] ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49875",
"url": "https://www.suse.com/security/cve/CVE-2024-49875"
},
{
"category": "external",
"summary": "SUSE Bug 1232333 for CVE-2024-49875",
"url": "https://bugzilla.suse.com/1232333"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49875"
},
{
"cve": "CVE-2024-49877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49877"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate\n\nWhen doing cleanup, if flags without OCFS2_BH_READAHEAD, it may trigger\nNULL pointer dereference in the following ocfs2_set_buffer_uptodate() if\nbh is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49877",
"url": "https://www.suse.com/security/cve/CVE-2024-49877"
},
{
"category": "external",
"summary": "SUSE Bug 1232339 for CVE-2024-49877",
"url": "https://bugzilla.suse.com/1232339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49877"
},
{
"cve": "CVE-2024-49879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: omapdrm: Add missing check for alloc_ordered_workqueue\n\nAs it may return NULL pointer and cause NULL pointer dereference. Add check\nfor the return value of alloc_ordered_workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49879",
"url": "https://www.suse.com/security/cve/CVE-2024-49879"
},
{
"category": "external",
"summary": "SUSE Bug 1232349 for CVE-2024-49879",
"url": "https://bugzilla.suse.com/1232349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49879"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths\n\nWhen the HBA is undergoing a reset or is handling an errata event, NULL ptr\ndereference crashes may occur in routines such as\nlpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or\nlpfc_abort_handler().\n\nAdd NULL ptr checks before dereferencing hdwq pointers that may have been\nfreed due to operations colliding with a reset or errata event handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49891",
"url": "https://www.suse.com/security/cve/CVE-2024-49891"
},
{
"category": "external",
"summary": "SUSE Bug 1232218 for CVE-2024-49891",
"url": "https://bugzilla.suse.com/1232218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49891"
},
{
"cve": "CVE-2024-49900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uninit-value access of new_ea in ea_buffer\n\nsyzbot reports that lzo1x_1_do_compress is using uninit-value:\n\n=====================================================\nBUG: KMSAN: uninit-value in lzo1x_1_do_compress+0x19f9/0x2510 lib/lzo/lzo1x_compress.c:178\n\n...\n\nUninit was stored to memory at:\n ea_put fs/jfs/xattr.c:639 [inline]\n\n...\n\nLocal variable ea_buf created at:\n __jfs_setxattr+0x5d/0x1ae0 fs/jfs/xattr.c:662\n __jfs_xattr_set+0xe6/0x1f0 fs/jfs/xattr.c:934\n\n=====================================================\n\nThe reason is ea_buf-\u003enew_ea is not initialized properly.\n\nFix this by using memset to empty its content at the beginning\nin ea_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49900",
"url": "https://www.suse.com/security/cve/CVE-2024-49900"
},
{
"category": "external",
"summary": "SUSE Bug 1232359 for CVE-2024-49900",
"url": "https://bugzilla.suse.com/1232359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49900"
},
{
"cve": "CVE-2024-49902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49902"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: check if leafidx greater than num leaves per dmap tree\n\nsyzbot report a out of bounds in dbSplit, it because dmt_leafidx greater\nthan num leaves per dmap tree, add a checking for dmt_leafidx in dbFindLeaf.\n\nShaggy:\nModified sanity check to apply to control pages as well as leaf pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49902",
"url": "https://www.suse.com/security/cve/CVE-2024-49902"
},
{
"category": "external",
"summary": "SUSE Bug 1232378 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "external",
"summary": "SUSE Bug 1232379 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-49902"
},
{
"cve": "CVE-2024-49903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uaf in dbFreeBits\n\n[syzbot reported]\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common kernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\nRead of size 8 at addr ffff8880229254b0 by task syz-executor357/5216\n\nCPU: 0 UID: 0 PID: 5216 Comm: syz-executor357 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __mutex_lock_common kernel/locking/mutex.c:587 [inline]\n __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\n dbFreeBits+0x7ea/0xd90 fs/jfs/jfs_dmap.c:2390\n dbFreeDmap fs/jfs/jfs_dmap.c:2089 [inline]\n dbFree+0x35b/0x680 fs/jfs/jfs_dmap.c:409\n dbDiscardAG+0x8a9/0xa20 fs/jfs/jfs_dmap.c:1650\n jfs_ioc_trim+0x433/0x670 fs/jfs/jfs_discard.c:100\n jfs_ioctl+0x2d0/0x3e0 fs/jfs/ioctl.c:131\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n\nFreed by task 5218:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kfree+0x149/0x360 mm/slub.c:4594\n dbUnmount+0x11d/0x190 fs/jfs/jfs_dmap.c:278\n jfs_mount_rw+0x4ac/0x6a0 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3d1/0x6b0 fs/jfs/super.c:454\n reconfigure_super+0x445/0x880 fs/super.c:1083\n vfs_cmd_reconfigure fs/fsopen.c:263 [inline]\n vfs_fsconfig_locked fs/fsopen.c:292 [inline]\n __do_sys_fsconfig fs/fsopen.c:473 [inline]\n __se_sys_fsconfig+0xb6e/0xf80 fs/fsopen.c:345\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[Analysis]\nThere are two paths (dbUnmount and jfs_ioc_trim) that generate race\ncondition when accessing bmap, which leads to the occurrence of uaf.\n\nUse the lock s_umount to synchronize them, in order to avoid uaf caused\nby race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49903",
"url": "https://www.suse.com/security/cve/CVE-2024-49903"
},
{
"category": "external",
"summary": "SUSE Bug 1232362 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "external",
"summary": "SUSE Bug 1233020 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1233020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-49903"
},
{
"cve": "CVE-2024-49905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_plane_handle_cursor_update function. Previously, \u0027afb\u0027 was\nassumed to be null, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm_plane.c:1298 amdgpu_dm_plane_handle_cursor_update() error: we previously assumed \u0027afb\u0027 could be null (see line 1252)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49905",
"url": "https://www.suse.com/security/cve/CVE-2024-49905"
},
{
"category": "external",
"summary": "SUSE Bug 1232357 for CVE-2024-49905",
"url": "https://bugzilla.suse.com/1232357"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49905"
},
{
"cve": "CVE-2024-49907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using dc-\u003eclk_mgr\n\n[WHY \u0026 HOW]\ndc-\u003eclk_mgr is null checked previously in the same function, indicating\nit might be null.\n\nPassing \"dc\" to \"dc-\u003ehwss.apply_idle_power_optimizations\", which\ndereferences null \"dc-\u003eclk_mgr\". (The function pointer resolves to\n\"dcn35_apply_idle_power_optimizations\".)\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49907",
"url": "https://www.suse.com/security/cve/CVE-2024-49907"
},
{
"category": "external",
"summary": "SUSE Bug 1232334 for CVE-2024-49907",
"url": "https://bugzilla.suse.com/1232334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49907"
},
{
"cve": "CVE-2024-49908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49908",
"url": "https://www.suse.com/security/cve/CVE-2024-49908"
},
{
"category": "external",
"summary": "SUSE Bug 1232335 for CVE-2024-49908",
"url": "https://bugzilla.suse.com/1232335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49908"
},
{
"cve": "CVE-2024-49921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before used\n\n[WHAT \u0026 HOW]\nPoniters, such as dc-\u003eclk_mgr, are null checked previously in the same\nfunction, so Coverity warns \"implies that \"dc-\u003eclk_mgr\" might be null\".\nAs a result, these pointers need to be checked when used again.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49921",
"url": "https://www.suse.com/security/cve/CVE-2024-49921"
},
{
"category": "external",
"summary": "SUSE Bug 1232371 for CVE-2024-49921",
"url": "https://bugzilla.suse.com/1232371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49921"
},
{
"cve": "CVE-2024-49924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: pxafb: Fix possible use after free in pxafb_task()\n\nIn the pxafb_probe function, it calls the pxafb_init_fbinfo function,\nafter which \u0026fbi-\u003etask is associated with pxafb_task. Moreover,\nwithin this pxafb_init_fbinfo function, the pxafb_blank function\nwithin the \u0026pxafb_ops struct is capable of scheduling work.\n\nIf we remove the module which will call pxafb_remove to make cleanup,\nit will call unregister_framebuffer function which can call\ndo_unregister_framebuffer to free fbi-\u003efb through\nput_fb_info(fb_info), while the work mentioned above will be used.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | pxafb_task\npxafb_remove |\nunregister_framebuffer(info) |\ndo_unregister_framebuffer(fb_info) |\nput_fb_info(fb_info) |\n// free fbi-\u003efb | set_ctrlr_state(fbi, state)\n | __pxafb_lcd_power(fbi, 0)\n | fbi-\u003elcd_power(on, \u0026fbi-\u003efb.var)\n | //use fbi-\u003efb\n\nFix it by ensuring that the work is canceled before proceeding\nwith the cleanup in pxafb_remove.\n\nNote that only root user can remove the driver at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49924",
"url": "https://www.suse.com/security/cve/CVE-2024-49924"
},
{
"category": "external",
"summary": "SUSE Bug 1232364 for CVE-2024-49924",
"url": "https://bugzilla.suse.com/1232364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49924"
},
{
"cve": "CVE-2024-49925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: efifb: Register sysfs groups through driver core\n\nThe driver core can register and cleanup sysfs groups already.\nMake use of that functionality to simplify the error handling and\ncleanup.\n\nAlso avoid a UAF race during unregistering where the sysctl attributes\nwere usable after the info struct was freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49925",
"url": "https://www.suse.com/security/cve/CVE-2024-49925"
},
{
"category": "external",
"summary": "SUSE Bug 1232224 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "external",
"summary": "SUSE Bug 1232225 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49925"
},
{
"cve": "CVE-2024-49934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name\n\nIt\u0027s observed that a crash occurs during hot-remove a memory device,\nin which user is accessing the hugetlb. See calltrace as following:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 14045 at arch/x86/mm/fault.c:1278 do_user_addr_fault+0x2a0/0x790\nModules linked in: kmem device_dax cxl_mem cxl_pmem cxl_port cxl_pci dax_hmem dax_pmem nd_pmem cxl_acpi nd_btt cxl_core crc32c_intel nvme virtiofs fuse nvme_core nfit libnvdimm dm_multipath scsi_dh_rdac scsi_dh_emc s\nmirror dm_region_hash dm_log dm_mod\nCPU: 1 PID: 14045 Comm: daxctl Not tainted 6.10.0-rc2-lizhijian+ #492\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:do_user_addr_fault+0x2a0/0x790\nCode: 48 8b 00 a8 04 0f 84 b5 fe ff ff e9 1c ff ff ff 4c 89 e9 4c 89 e2 be 01 00 00 00 bf 02 00 00 00 e8 b5 ef 24 00 e9 42 fe ff ff \u003c0f\u003e 0b 48 83 c4 08 4c 89 ea 48 89 ee 4c 89 e7 5b 5d 41 5c 41 5d 41\nRSP: 0000:ffffc90000a575f0 EFLAGS: 00010046\nRAX: ffff88800c303600 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000001000 RSI: ffffffff82504162 RDI: ffffffff824b2c36\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000a57658\nR13: 0000000000001000 R14: ffff88800bc2e040 R15: 0000000000000000\nFS: 00007f51cb57d880(0000) GS:ffff88807fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000001000 CR3: 00000000072e2004 CR4: 00000000001706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x8d/0x190\n ? do_user_addr_fault+0x2a0/0x790\n ? report_bug+0x1c3/0x1d0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? do_user_addr_fault+0x2a0/0x790\n ? exc_page_fault+0x31/0x200\n exc_page_fault+0x68/0x200\n\u003c...snip...\u003e\nBUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n ---[ end trace 0000000000000000 ]---\n BUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 14045 Comm: daxctl Kdump: loaded Tainted: G W 6.10.0-rc2-lizhijian+ #492\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n RIP: 0010:dentry_name+0x1f4/0x440\n\u003c...snip...\u003e\n? dentry_name+0x2fa/0x440\nvsnprintf+0x1f3/0x4f0\nvprintk_store+0x23a/0x540\nvprintk_emit+0x6d/0x330\n_printk+0x58/0x80\ndump_mapping+0x10b/0x1a0\n? __pfx_free_object_rcu+0x10/0x10\n__dump_page+0x26b/0x3e0\n? vprintk_emit+0xe0/0x330\n? _printk+0x58/0x80\n? dump_page+0x17/0x50\ndump_page+0x17/0x50\ndo_migrate_range+0x2f7/0x7f0\n? do_migrate_range+0x42/0x7f0\n? offline_pages+0x2f4/0x8c0\noffline_pages+0x60a/0x8c0\nmemory_subsys_offline+0x9f/0x1c0\n? lockdep_hardirqs_on+0x77/0x100\n? _raw_spin_unlock_irqrestore+0x38/0x60\ndevice_offline+0xe3/0x110\nstate_store+0x6e/0xc0\nkernfs_fop_write_iter+0x143/0x200\nvfs_write+0x39f/0x560\nksys_write+0x65/0xf0\ndo_syscall_64+0x62/0x130\n\nPreviously, some sanity check have been done in dump_mapping() before\nthe print facility parsing \u0027%pd\u0027 though, it\u0027s still possible to run into\nan invalid dentry.d_name.name.\n\nSince dump_mapping() only needs to dump the filename only, retrieve it\nby itself in a safer way to prevent an unnecessary crash.\n\nNote that either retrieving the filename with \u0027%pd\u0027 or\nstrncpy_from_kernel_nofault(), the filename could be unreliable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49934",
"url": "https://www.suse.com/security/cve/CVE-2024-49934"
},
{
"category": "external",
"summary": "SUSE Bug 1232387 for CVE-2024-49934",
"url": "https://bugzilla.suse.com/1232387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49934"
},
{
"cve": "CVE-2024-49935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PAD: fix crash in exit_round_robin()\n\nThe kernel occasionally crashes in cpumask_clear_cpu(), which is called\nwithin exit_round_robin(), because when executing clear_bit(nr, addr) with\nnr set to 0xffffffff, the address calculation may cause misalignment within\nthe memory, leading to access to an invalid memory address.\n\n----------\nBUG: unable to handle kernel paging request at ffffffffe0740618\n ...\nCPU: 3 PID: 2919323 Comm: acpi_pad/14 Kdump: loaded Tainted: G OE X --------- - - 4.18.0-425.19.2.el8_7.x86_64 #1\n ...\nRIP: 0010:power_saving_thread+0x313/0x411 [acpi_pad]\nCode: 89 cd 48 89 d3 eb d1 48 c7 c7 55 70 72 c0 e8 64 86 b0 e4 c6 05 0d a1 02 00 01 e9 bc fd ff ff 45 89 e4 42 8b 04 a5 20 82 72 c0 \u003cf0\u003e 48 0f b3 05 f4 9c 01 00 42 c7 04 a5 20 82 72 c0 ff ff ff ff 31\nRSP: 0018:ff72a5d51fa77ec8 EFLAGS: 00010202\nRAX: 00000000ffffffff RBX: ff462981e5d8cb80 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000246 RDI: 0000000000000246\nRBP: ff46297556959d80 R08: 0000000000000382 R09: ff46297c8d0f38d8\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000000e\nR13: 0000000000000000 R14: ffffffffffffffff R15: 000000000000000e\nFS: 0000000000000000(0000) GS:ff46297a800c0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffffffe0740618 CR3: 0000007e20410004 CR4: 0000000000771ee0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n ? acpi_pad_add+0x120/0x120 [acpi_pad]\n kthread+0x10b/0x130\n ? set_kthread_struct+0x50/0x50\n ret_from_fork+0x1f/0x40\n ...\nCR2: ffffffffe0740618\n\ncrash\u003e dis -lr ffffffffc0726923\n ...\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 114\n0xffffffffc0726918 \u003cpower_saving_thread+776\u003e:\tmov %r12d,%r12d\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 325\n0xffffffffc072691b \u003cpower_saving_thread+779\u003e:\tmov -0x3f8d7de0(,%r12,4),%eax\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./arch/x86/include/asm/bitops.h: 80\n0xffffffffc0726923 \u003cpower_saving_thread+787\u003e:\tlock btr %rax,0x19cf4(%rip) # 0xffffffffc0740620 \u003cpad_busy_cpus_bits\u003e\n\ncrash\u003e px tsk_in_cpu[14]\n$66 = 0xffffffff\n\ncrash\u003e px 0xffffffffc072692c+0x19cf4\n$99 = 0xffffffffc0740620\n\ncrash\u003e sym 0xffffffffc0740620\nffffffffc0740620 (b) pad_busy_cpus_bits [acpi_pad]\n\ncrash\u003e px pad_busy_cpus_bits[0]\n$42 = 0xfffc0\n----------\n\nTo fix this, ensure that tsk_in_cpu[tsk_index] != -1 before calling\ncpumask_clear_cpu() in exit_round_robin(), just as it is done in\nround_robin_cpu().\n\n[ rjw: Subject edit, avoid updates to the same value ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49935",
"url": "https://www.suse.com/security/cve/CVE-2024-49935"
},
{
"category": "external",
"summary": "SUSE Bug 1232370 for CVE-2024-49935",
"url": "https://bugzilla.suse.com/1232370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49935"
},
{
"cve": "CVE-2024-49938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit\n\nSyzbot points out that skb_trim() has a sanity check on the existing length of\nthe skb, which can be uninitialised in some error paths. The intent here is\nclearly just to reset the length to zero before resubmitting, so switch to\ncalling __skb_set_length(skb, 0) directly. In addition, __skb_set_length()\nalready contains a call to skb_reset_tail_pointer(), so remove the redundant\ncall.\n\nThe syzbot report came from ath9k_hif_usb_reg_in_cb(), but there\u0027s a similar\nusage of skb_trim() in ath9k_hif_usb_rx_cb(), change both while we\u0027re at it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49938",
"url": "https://www.suse.com/security/cve/CVE-2024-49938"
},
{
"category": "external",
"summary": "SUSE Bug 1232552 for CVE-2024-49938",
"url": "https://bugzilla.suse.com/1232552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49938"
},
{
"cve": "CVE-2024-49945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ncsi: Disable the ncsi work before freeing the associated structure\n\nThe work function can run after the ncsi device is freed, resulting\nin use-after-free bugs or kernel panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49945",
"url": "https://www.suse.com/security/cve/CVE-2024-49945"
},
{
"category": "external",
"summary": "SUSE Bug 1232165 for CVE-2024-49945",
"url": "https://bugzilla.suse.com/1232165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49945"
},
{
"cve": "CVE-2024-49947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: test for not too small csum_start in virtio_net_hdr_to_skb()\n\nsyzbot was able to trigger this warning [1], after injecting a\nmalicious packet through af_packet, setting skb-\u003ecsum_start and thus\nthe transport header to an incorrect value.\n\nWe can at least make sure the transport header is after\nthe end of the network header (with a estimated minimal size).\n\n[1]\n[ 67.873027] skb len=4096 headroom=16 headlen=14 tailroom=0\nmac=(-1,-1) mac_len=0 net=(16,-6) trans=10\nshinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))\ncsum(0xa start=10 offset=0 ip_summed=3 complete_sw=0 valid=0 level=0)\nhash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0\npriority=0x0 mark=0x0 alloc_cpu=10 vlan_all=0x0\nencapsulation=0 inner(proto=0x0000, mac=0, net=0, trans=0)\n[ 67.877172] dev name=veth0_vlan feat=0x000061164fdd09e9\n[ 67.877764] sk family=17 type=3 proto=0\n[ 67.878279] skb linear: 00000000: 00 00 10 00 00 00 00 00 0f 00 00 00 08 00\n[ 67.879128] skb frag: 00000000: 0e 00 07 00 00 00 28 00 08 80 1c 00 04 00 00 02\n[ 67.879877] skb frag: 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.880647] skb frag: 00000020: 00 00 02 00 00 00 08 00 1b 00 00 00 00 00 00 00\n[ 67.881156] skb frag: 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.881753] skb frag: 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882173] skb frag: 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882790] skb frag: 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883171] skb frag: 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883733] skb frag: 00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.884206] skb frag: 00000090: 00 00 00 00 00 00 00 00 00 00 69 70 76 6c 61 6e\n[ 67.884704] skb frag: 000000a0: 31 00 00 00 00 00 00 00 00 00 2b 00 00 00 00 00\n[ 67.885139] skb frag: 000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.885677] skb frag: 000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886042] skb frag: 000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886408] skb frag: 000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887020] skb frag: 000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887384] skb frag: 00000100: 00 00\n[ 67.887878] ------------[ cut here ]------------\n[ 67.887908] offset (-6) \u003e= skb_headlen() (14)\n[ 67.888445] WARNING: CPU: 10 PID: 2088 at net/core/dev.c:3332 skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.889353] Modules linked in: macsec macvtap macvlan hsr wireguard curve25519_x86_64 libcurve25519_generic libchacha20poly1305 chacha_x86_64 libchacha poly1305_x86_64 dummy bridge sr_mod cdrom evdev pcspkr i2c_piix4 9pnet_virtio 9p 9pnet netfs\n[ 67.890111] CPU: 10 UID: 0 PID: 2088 Comm: b363492833 Not tainted 6.11.0-virtme #1011\n[ 67.890183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 67.890309] RIP: 0010:skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891043] Call Trace:\n[ 67.891173] \u003cTASK\u003e\n[ 67.891274] ? __warn (kernel/panic.c:741)\n[ 67.891320] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891333] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 67.891348] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 67.891363] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 67.891372] ? asm_exc_invalid_op (./arch/x86/include/asm/idtentry.h:621)\n[ 67.891388] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891399] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891416] ip_do_fragment (net/ipv4/ip_output.c:777 (discriminator 1))\n[ 67.891448] ? __ip_local_out (./include/linux/skbuff.h:1146 ./include/net/l3mdev.h:196 ./include/net/l3mdev.h:213 ne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49947",
"url": "https://www.suse.com/security/cve/CVE-2024-49947"
},
{
"category": "external",
"summary": "SUSE Bug 1232162 for CVE-2024-49947",
"url": "https://bugzilla.suse.com/1232162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49947"
},
{
"cve": "CVE-2024-49950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix uaf in l2cap_connect\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\nRead of size 8 at addr ffff8880241e9800 by task kworker/u9:0/54\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-00268-g788220eee30d #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci2 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\n l2cap_connect_req net/bluetooth/l2cap_core.c:4080 [inline]\n l2cap_bredr_sig_cmd net/bluetooth/l2cap_core.c:4772 [inline]\n l2cap_sig_channel net/bluetooth/l2cap_core.c:5543 [inline]\n l2cap_recv_frame+0xf0b/0x8eb0 net/bluetooth/l2cap_core.c:6825\n l2cap_recv_acldata+0x9b4/0xb70 net/bluetooth/l2cap_core.c:7514\n hci_acldata_packet net/bluetooth/hci_core.c:3791 [inline]\n hci_rx_work+0xaab/0x1610 net/bluetooth/hci_core.c:4028\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n...\n\nFreed by task 5245:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:579\n poison_slab_object+0xf7/0x160 mm/kasan/common.c:240\n __kasan_slab_free+0x32/0x50 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x12a/0x3b0 mm/slub.c:4598\n l2cap_conn_free net/bluetooth/l2cap_core.c:1810 [inline]\n kref_put include/linux/kref.h:65 [inline]\n l2cap_conn_put net/bluetooth/l2cap_core.c:1822 [inline]\n l2cap_conn_del+0x59d/0x730 net/bluetooth/l2cap_core.c:1802\n l2cap_connect_cfm+0x9e6/0xf80 net/bluetooth/l2cap_core.c:7241\n hci_connect_cfm include/net/bluetooth/hci_core.h:1960 [inline]\n hci_conn_failed+0x1c3/0x370 net/bluetooth/hci_conn.c:1265\n hci_abort_conn_sync+0x75a/0xb50 net/bluetooth/hci_sync.c:5583\n abort_conn_sync+0x197/0x360 net/bluetooth/hci_conn.c:2917\n hci_cmd_sync_work+0x1a4/0x410 net/bluetooth/hci_sync.c:328\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49950",
"url": "https://www.suse.com/security/cve/CVE-2024-49950"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232159 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1232159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49950"
},
{
"cve": "CVE-2024-49957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix null-ptr-deref when journal load failed.\n\nDuring the mounting process, if journal_reset() fails because of too short\njournal, then lead to jbd2_journal_load() fails with NULL j_sb_buffer. \nSubsequently, ocfs2_journal_shutdown() calls\njbd2_journal_flush()-\u003ejbd2_cleanup_journal_tail()-\u003e\n__jbd2_update_log_tail()-\u003ejbd2_journal_update_sb_log_tail()\n-\u003elock_buffer(journal-\u003ej_sb_buffer), resulting in a null-pointer\ndereference error.\n\nTo resolve this issue, we should check the JBD2_LOADED flag to ensure the\njournal was properly loaded. Additionally, use journal instead of\nosb-\u003ejournal directly to simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49957",
"url": "https://www.suse.com/security/cve/CVE-2024-49957"
},
{
"category": "external",
"summary": "SUSE Bug 1232152 for CVE-2024-49957",
"url": "https://bugzilla.suse.com/1232152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49957"
},
{
"cve": "CVE-2024-49963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmailbox: bcm2835: Fix timeout during suspend mode\n\nDuring noirq suspend phase the Raspberry Pi power driver suffer of\nfirmware property timeouts. The reason is that the IRQ of the underlying\nBCM2835 mailbox is disabled and rpi_firmware_property_list() will always\nrun into a timeout [1].\n\nSince the VideoCore side isn\u0027t consider as a wakeup source, set the\nIRQF_NO_SUSPEND flag for the mailbox IRQ in order to keep it enabled\nduring suspend-resume cycle.\n\n[1]\nPM: late suspend of devices complete after 1.754 msecs\nWARNING: CPU: 0 PID: 438 at drivers/firmware/raspberrypi.c:128\n rpi_firmware_property_list+0x204/0x22c\nFirmware transaction 0x00028001 timeout\nModules linked in:\nCPU: 0 PID: 438 Comm: bash Tainted: G C 6.9.3-dirty #17\nHardware name: BCM2835\nCall trace:\nunwind_backtrace from show_stack+0x18/0x1c\nshow_stack from dump_stack_lvl+0x34/0x44\ndump_stack_lvl from __warn+0x88/0xec\n__warn from warn_slowpath_fmt+0x7c/0xb0\nwarn_slowpath_fmt from rpi_firmware_property_list+0x204/0x22c\nrpi_firmware_property_list from rpi_firmware_property+0x68/0x8c\nrpi_firmware_property from rpi_firmware_set_power+0x54/0xc0\nrpi_firmware_set_power from _genpd_power_off+0xe4/0x148\n_genpd_power_off from genpd_sync_power_off+0x7c/0x11c\ngenpd_sync_power_off from genpd_finish_suspend+0xcc/0xe0\ngenpd_finish_suspend from dpm_run_callback+0x78/0xd0\ndpm_run_callback from device_suspend_noirq+0xc0/0x238\ndevice_suspend_noirq from dpm_suspend_noirq+0xb0/0x168\ndpm_suspend_noirq from suspend_devices_and_enter+0x1b8/0x5ac\nsuspend_devices_and_enter from pm_suspend+0x254/0x2e4\npm_suspend from state_store+0xa8/0xd4\nstate_store from kernfs_fop_write_iter+0x154/0x1a0\nkernfs_fop_write_iter from vfs_write+0x12c/0x184\nvfs_write from ksys_write+0x78/0xc0\nksys_write from ret_fast_syscall+0x0/0x54\nException stack(0xcc93dfa8 to 0xcc93dff0)\n[...]\nPM: noirq suspend of devices complete after 3095.584 msecs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49963",
"url": "https://www.suse.com/security/cve/CVE-2024-49963"
},
{
"category": "external",
"summary": "SUSE Bug 1232147 for CVE-2024-49963",
"url": "https://bugzilla.suse.com/1232147"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49963"
},
{
"cve": "CVE-2024-49965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove unreasonable unlock in ocfs2_read_blocks\n\nPatch series \"Misc fixes for ocfs2_read_blocks\", v5.\n\nThis series contains 2 fixes for ocfs2_read_blocks(). The first patch fix\nthe issue reported by syzbot, which detects bad unlock balance in\nocfs2_read_blocks(). The second patch fixes an issue reported by Heming\nZhao when reviewing above fix.\n\n\nThis patch (of 2):\n\nThere was a lock release before exiting, so remove the unreasonable unlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49965",
"url": "https://www.suse.com/security/cve/CVE-2024-49965"
},
{
"category": "external",
"summary": "SUSE Bug 1232142 for CVE-2024-49965",
"url": "https://bugzilla.suse.com/1232142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49965"
},
{
"cve": "CVE-2024-49966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: cancel dqi_sync_work before freeing oinfo\n\nocfs2_global_read_info() will initialize and schedule dqi_sync_work at the\nend, if error occurs after successfully reading global quota, it will\ntrigger the following warning with CONFIG_DEBUG_OBJECTS_* enabled:\n\nODEBUG: free active (active state 0) object: 00000000d8b0ce28 object type: timer_list hint: qsync_work_fn+0x0/0x16c\n\nThis reports that there is an active delayed work when freeing oinfo in\nerror handling, so cancel dqi_sync_work first. BTW, return status instead\nof -1 when .read_file_info fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49966",
"url": "https://www.suse.com/security/cve/CVE-2024-49966"
},
{
"category": "external",
"summary": "SUSE Bug 1232141 for CVE-2024-49966",
"url": "https://bugzilla.suse.com/1232141"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49966"
},
{
"cve": "CVE-2024-49968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49968"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: filesystems without casefold feature cannot be mounted with siphash\n\nWhen mounting the ext4 filesystem, if the default hash version is set to\nDX_HASH_SIPHASH but the casefold feature is not set, exit the mounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49968",
"url": "https://www.suse.com/security/cve/CVE-2024-49968"
},
{
"category": "external",
"summary": "SUSE Bug 1232264 for CVE-2024-49968",
"url": "https://bugzilla.suse.com/1232264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49968"
},
{
"cve": "CVE-2024-49981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: fix use after free bug in venus_remove due to race condition\n\nin venus_probe, core-\u003ework is bound with venus_sys_error_handler, which is\nused to handle error. The code use core-\u003esys_err_done to make sync work.\nThe core-\u003ework is started in venus_event_notify.\n\nIf we call venus_remove, there might be an unfished work. The possible\nsequence is as follows:\n\nCPU0 CPU1\n\n |venus_sys_error_handler\nvenus_remove |\nhfi_destroy\t \t\t |\nvenus_hfi_destroy\t |\nkfree(hdev);\t |\n |hfi_reinit\n\t\t\t\t\t |venus_hfi_queues_reinit\n |//use hdev\n\nFix it by canceling the work in venus_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49981",
"url": "https://www.suse.com/security/cve/CVE-2024-49981"
},
{
"category": "external",
"summary": "SUSE Bug 1232098 for CVE-2024-49981",
"url": "https://bugzilla.suse.com/1232098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49981"
},
{
"cve": "CVE-2024-49983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free\n\nWhen calling ext4_force_split_extent_at() in ext4_ext_replay_update_ex(),\nthe \u0027ppath\u0027 is updated but it is the \u0027path\u0027 that is freed, thus potentially\ntriggering a double-free in the following process:\n\next4_ext_replay_update_ex\n ppath = path\n ext4_force_split_extent_at(\u0026ppath)\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path) ---\u003e path First freed\n *orig_path = path = NULL ---\u003e null ppath\n kfree(path) ---\u003e path double-free !!!\n\nSo drop the unnecessary ppath and use path directly to avoid this problem.\nAnd use ext4_find_extent() directly to update path, avoiding unnecessary\nmemory allocation and freeing. Also, propagate the error returned by\next4_find_extent() instead of using strange error codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49983",
"url": "https://www.suse.com/security/cve/CVE-2024-49983"
},
{
"category": "external",
"summary": "SUSE Bug 1232096 for CVE-2024-49983",
"url": "https://bugzilla.suse.com/1232096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49983"
},
{
"cve": "CVE-2024-49985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume\n\nIn case there is any sort of clock controller attached to this I2C bus\ncontroller, for example Versaclock or even an AIC32x4 I2C codec, then\nan I2C transfer triggered from the clock controller clk_ops .prepare\ncallback may trigger a deadlock on drivers/clk/clk.c prepare_lock mutex.\n\nThis is because the clock controller first grabs the prepare_lock mutex\nand then performs the prepare operation, including its I2C access. The\nI2C access resumes this I2C bus controller via .runtime_resume callback,\nwhich calls clk_prepare_enable(), which attempts to grab the prepare_lock\nmutex again and deadlocks.\n\nSince the clock are already prepared since probe() and unprepared in\nremove(), use simple clk_enable()/clk_disable() calls to enable and\ndisable the clock on runtime suspend and resume, to avoid hitting the\nprepare_lock mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49985",
"url": "https://www.suse.com/security/cve/CVE-2024-49985"
},
{
"category": "external",
"summary": "SUSE Bug 1232094 for CVE-2024-49985",
"url": "https://bugzilla.suse.com/1232094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49985"
},
{
"cve": "CVE-2024-49989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix double free issue during amdgpu module unload\n\nFlexible endpoints use DIGs from available inflexible endpoints,\nso only the encoders of inflexible links need to be freed.\nOtherwise, a double free issue may occur when unloading the\namdgpu module.\n\n[ 279.190523] RIP: 0010:__slab_free+0x152/0x2f0\n[ 279.190577] Call Trace:\n[ 279.190580] \u003cTASK\u003e\n[ 279.190582] ? show_regs+0x69/0x80\n[ 279.190590] ? die+0x3b/0x90\n[ 279.190595] ? do_trap+0xc8/0xe0\n[ 279.190601] ? do_error_trap+0x73/0xa0\n[ 279.190605] ? __slab_free+0x152/0x2f0\n[ 279.190609] ? exc_invalid_op+0x56/0x70\n[ 279.190616] ? __slab_free+0x152/0x2f0\n[ 279.190642] ? asm_exc_invalid_op+0x1f/0x30\n[ 279.190648] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191096] ? __slab_free+0x152/0x2f0\n[ 279.191102] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191469] kfree+0x260/0x2b0\n[ 279.191474] dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191821] link_destroy+0xd7/0x130 [amdgpu]\n[ 279.192248] dc_destruct+0x90/0x270 [amdgpu]\n[ 279.192666] dc_destroy+0x19/0x40 [amdgpu]\n[ 279.193020] amdgpu_dm_fini+0x16e/0x200 [amdgpu]\n[ 279.193432] dm_hw_fini+0x26/0x40 [amdgpu]\n[ 279.193795] amdgpu_device_fini_hw+0x24c/0x400 [amdgpu]\n[ 279.194108] amdgpu_driver_unload_kms+0x4f/0x70 [amdgpu]\n[ 279.194436] amdgpu_pci_remove+0x40/0x80 [amdgpu]\n[ 279.194632] pci_device_remove+0x3a/0xa0\n[ 279.194638] device_remove+0x40/0x70\n[ 279.194642] device_release_driver_internal+0x1ad/0x210\n[ 279.194647] driver_detach+0x4e/0xa0\n[ 279.194650] bus_remove_driver+0x6f/0xf0\n[ 279.194653] driver_unregister+0x33/0x60\n[ 279.194657] pci_unregister_driver+0x44/0x90\n[ 279.194662] amdgpu_exit+0x19/0x1f0 [amdgpu]\n[ 279.194939] __do_sys_delete_module.isra.0+0x198/0x2f0\n[ 279.194946] __x64_sys_delete_module+0x16/0x20\n[ 279.194950] do_syscall_64+0x58/0x120\n[ 279.194954] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 279.194980] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49989",
"url": "https://www.suse.com/security/cve/CVE-2024-49989"
},
{
"category": "external",
"summary": "SUSE Bug 1232483 for CVE-2024-49989",
"url": "https://bugzilla.suse.com/1232483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-49989"
},
{
"cve": "CVE-2024-50003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix system hang while resume with TBT monitor\n\n[Why]\nConnected with a Thunderbolt monitor and do the suspend and the system\nmay hang while resume.\n\nThe TBT monitor HPD will be triggered during the resume procedure\nand call the drm_client_modeset_probe() while\nstruct drm_connector connector-\u003edev-\u003emaster is NULL.\n\nIt will mess up the pipe topology after resume.\n\n[How]\nSkip the TBT monitor HPD during the resume procedure because we\ncurrently will probe the connectors after resume by default.\n\n(cherry picked from commit 453f86a26945207a16b8f66aaed5962dc2b95b85)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50003",
"url": "https://www.suse.com/security/cve/CVE-2024-50003"
},
{
"category": "external",
"summary": "SUSE Bug 1232385 for CVE-2024-50003",
"url": "https://bugzilla.suse.com/1232385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50003"
},
{
"cve": "CVE-2024-50007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: asihpi: Fix potential OOB array access\n\nASIHPI driver stores some values in the static array upon a response\nfrom the driver, and its index depends on the firmware. We shouldn\u0027t\ntrust it blindly.\n\nThis patch adds a sanity check of the array index to fit in the array\nsize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50007",
"url": "https://www.suse.com/security/cve/CVE-2024-50007"
},
{
"category": "external",
"summary": "SUSE Bug 1232394 for CVE-2024-50007",
"url": "https://bugzilla.suse.com/1232394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50007"
},
{
"cve": "CVE-2024-50008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()\n\nReplace one-element array with a flexible-array member in\n`struct host_cmd_ds_802_11_scan_ext`.\n\nWith this, fix the following warning:\n\nelo 16 17:51:58 surfacebook kernel: ------------[ cut here ]------------\nelo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field \"ext_scan-\u003etlv_buffer\" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1)\nelo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50008",
"url": "https://www.suse.com/security/cve/CVE-2024-50008"
},
{
"category": "external",
"summary": "SUSE Bug 1232317 for CVE-2024-50008",
"url": "https://bugzilla.suse.com/1232317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50008"
},
{
"cve": "CVE-2024-50009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value\n\ncpufreq_cpu_get may return NULL. To avoid NULL-dereference check it\nand return in case of error.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50009",
"url": "https://www.suse.com/security/cve/CVE-2024-50009"
},
{
"category": "external",
"summary": "SUSE Bug 1232318 for CVE-2024-50009",
"url": "https://bugzilla.suse.com/1232318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50009"
},
{
"cve": "CVE-2024-50013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix memory leak in exfat_load_bitmap()\n\nIf the first directory entry in the root directory is not a bitmap\ndirectory entry, \u0027bh\u0027 will not be released and reassigned, which\nwill cause a memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50013",
"url": "https://www.suse.com/security/cve/CVE-2024-50013"
},
{
"category": "external",
"summary": "SUSE Bug 1232080 for CVE-2024-50013",
"url": "https://bugzilla.suse.com/1232080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50013"
},
{
"cve": "CVE-2024-50017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm/ident_map: Use gbpages only where full GB page should be mapped.\n\nWhen ident_pud_init() uses only GB pages to create identity maps, large\nranges of addresses not actually requested can be included in the resulting\ntable; a 4K request will map a full GB. This can include a lot of extra\naddress space past that requested, including areas marked reserved by the\nBIOS. That allows processor speculation into reserved regions, that on UV\nsystems can cause system halts.\n\nOnly use GB pages when map creation requests include the full GB page of\nspace. Fall back to using smaller 2M pages when only portions of a GB page\nare included in the request.\n\nNo attempt is made to coalesce mapping requests. If a request requires a\nmap entry at the 2M (pmd) level, subsequent mapping requests within the\nsame 1G region will also be at the pmd level, even if adjacent or\noverlapping such requests could have been combined to map a full GB page.\nExisting usage starts with larger regions and then adds smaller regions, so\nthis should not have any great consequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50017",
"url": "https://www.suse.com/security/cve/CVE-2024-50017"
},
{
"category": "external",
"summary": "SUSE Bug 1232312 for CVE-2024-50017",
"url": "https://bugzilla.suse.com/1232312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50017"
},
{
"cve": "CVE-2024-50025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: fnic: Move flush_work initialization out of if block\n\nAfter commit 379a58caa199 (\"scsi: fnic: Move fnic_fnic_flush_tx() to a\nwork queue\"), it can happen that a work item is sent to an uninitialized\nwork queue. This may has the effect that the item being queued is never\nactually queued, and any further actions depending on it will not\nproceed.\n\nThe following warning is observed while the fnic driver is loaded:\n\nkernel: WARNING: CPU: 11 PID: 0 at ../kernel/workqueue.c:1524 __queue_work+0x373/0x410\nkernel: \u003cIRQ\u003e\nkernel: queue_work_on+0x3a/0x50\nkernel: fnic_wq_copy_cmpl_handler+0x54a/0x730 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: fnic_isr_msix_wq_copy+0x2d/0x60 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: __handle_irq_event_percpu+0x36/0x1a0\nkernel: handle_irq_event_percpu+0x30/0x70\nkernel: handle_irq_event+0x34/0x60\nkernel: handle_edge_irq+0x7e/0x1a0\nkernel: __common_interrupt+0x3b/0xb0\nkernel: common_interrupt+0x58/0xa0\nkernel: \u003c/IRQ\u003e\n\nIt has been observed that this may break the rediscovery of Fibre\nChannel devices after a temporary fabric failure.\n\nThis patch fixes it by moving the work queue initialization out of\nan if block in fnic_probe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50025",
"url": "https://www.suse.com/security/cve/CVE-2024-50025"
},
{
"category": "external",
"summary": "SUSE Bug 1231953 for CVE-2024-50025",
"url": "https://bugzilla.suse.com/1231953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50025"
},
{
"cve": "CVE-2024-50026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: wd33c93: Don\u0027t use stale scsi_pointer value\n\nA regression was introduced with commit dbb2da557a6a (\"scsi: wd33c93:\nMove the SCSI pointer to private command data\") which results in an oops\nin wd33c93_intr(). That commit added the scsi_pointer variable and\ninitialized it from hostdata-\u003econnected. However, during selection,\nhostdata-\u003econnected is not yet valid. Fix this by getting the current\nscsi_pointer from hostdata-\u003eselecting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50026",
"url": "https://www.suse.com/security/cve/CVE-2024-50026"
},
{
"category": "external",
"summary": "SUSE Bug 1231952 for CVE-2024-50026",
"url": "https://bugzilla.suse.com/1231952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50026"
},
{
"cve": "CVE-2024-50031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Stop the active perfmon before being destroyed\n\nWhen running `kmscube` with one or more performance monitors enabled\nvia `GALLIUM_HUD`, the following kernel panic can occur:\n\n[ 55.008324] Unable to handle kernel paging request at virtual address 00000000052004a4\n[ 55.008368] Mem abort info:\n[ 55.008377] ESR = 0x0000000096000005\n[ 55.008387] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 55.008402] SET = 0, FnV = 0\n[ 55.008412] EA = 0, S1PTW = 0\n[ 55.008421] FSC = 0x05: level 1 translation fault\n[ 55.008434] Data abort info:\n[ 55.008442] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 55.008455] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 55.008467] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 55.008481] user pgtable: 4k pages, 39-bit VAs, pgdp=00000001046c6000\n[ 55.008497] [00000000052004a4] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n[ 55.008525] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n[ 55.008542] Modules linked in: rfcomm [...] vc4 v3d snd_soc_hdmi_codec drm_display_helper\ngpu_sched drm_shmem_helper cec drm_dma_helper drm_kms_helper i2c_brcmstb\ndrm drm_panel_orientation_quirks snd_soc_core snd_compress snd_pcm_dmaengine snd_pcm snd_timer snd backlight\n[ 55.008799] CPU: 2 PID: 166 Comm: v3d_bin Tainted: G C 6.6.47+rpt-rpi-v8 #1 Debian 1:6.6.47-1+rpt1\n[ 55.008824] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n[ 55.008838] pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 55.008855] pc : __mutex_lock.constprop.0+0x90/0x608\n[ 55.008879] lr : __mutex_lock.constprop.0+0x58/0x608\n[ 55.008895] sp : ffffffc080673cf0\n[ 55.008904] x29: ffffffc080673cf0 x28: 0000000000000000 x27: ffffff8106188a28\n[ 55.008926] x26: ffffff8101e78040 x25: ffffff8101baa6c0 x24: ffffffd9d989f148\n[ 55.008947] x23: ffffffda1c2a4008 x22: 0000000000000002 x21: ffffffc080673d38\n[ 55.008968] x20: ffffff8101238000 x19: ffffff8104f83188 x18: 0000000000000000\n[ 55.008988] x17: 0000000000000000 x16: ffffffda1bd04d18 x15: 00000055bb08bc90\n[ 55.009715] x14: 0000000000000000 x13: 0000000000000000 x12: ffffffda1bd4cbb0\n[ 55.010433] x11: 00000000fa83b2da x10: 0000000000001a40 x9 : ffffffda1bd04d04\n[ 55.011162] x8 : ffffff8102097b80 x7 : 0000000000000000 x6 : 00000000030a5857\n[ 55.011880] x5 : 00ffffffffffffff x4 : 0300000005200470 x3 : 0300000005200470\n[ 55.012598] x2 : ffffff8101238000 x1 : 0000000000000021 x0 : 0300000005200470\n[ 55.013292] Call trace:\n[ 55.013959] __mutex_lock.constprop.0+0x90/0x608\n[ 55.014646] __mutex_lock_slowpath+0x1c/0x30\n[ 55.015317] mutex_lock+0x50/0x68\n[ 55.015961] v3d_perfmon_stop+0x40/0xe0 [v3d]\n[ 55.016627] v3d_bin_job_run+0x10c/0x2d8 [v3d]\n[ 55.017282] drm_sched_main+0x178/0x3f8 [gpu_sched]\n[ 55.017921] kthread+0x11c/0x128\n[ 55.018554] ret_from_fork+0x10/0x20\n[ 55.019168] Code: f9400260 f1001c1f 54001ea9 927df000 (b9403401)\n[ 55.019776] ---[ end trace 0000000000000000 ]---\n[ 55.020411] note: v3d_bin[166] exited with preempt_count 1\n\nThis issue arises because, upon closing the file descriptor (which happens\nwhen we interrupt `kmscube`), the active performance monitor is not\nstopped. Although all perfmons are destroyed in `v3d_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`v3d-\u003eactive_perfmon`) is still\nretained.\n\nIf `kmscube` is run again, the driver will attempt to stop the active\nperformance monitor using the stale pointer in `v3d-\u003eactive_perfmon`.\nHowever, this pointer is no longer valid because the previous process has\nalready terminated, and all performance monitors associated with it have\nbeen destroyed and freed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50031",
"url": "https://www.suse.com/security/cve/CVE-2024-50031"
},
{
"category": "external",
"summary": "SUSE Bug 1231947 for CVE-2024-50031",
"url": "https://bugzilla.suse.com/1231947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50031"
},
{
"cve": "CVE-2024-50044",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50044"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change\n\nrfcomm_sk_state_change attempts to use sock_lock so it must never be\ncalled with it locked but rfcomm_sock_ioctl always attempt to lock it\ncausing the following trace:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted\n------------------------------------------------------\nsyz-executor386/5093 is trying to acquire lock:\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1671 [inline]\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x5b/0x310 net/bluetooth/rfcomm/sock.c:73\n\nbut task is already holding lock:\nffff88807badfd28 (\u0026d-\u003elock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0 net/bluetooth/rfcomm/core.c:491",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50044",
"url": "https://www.suse.com/security/cve/CVE-2024-50044"
},
{
"category": "external",
"summary": "SUSE Bug 1231904 for CVE-2024-50044",
"url": "https://bugzilla.suse.com/1231904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50044"
},
{
"cve": "CVE-2024-50062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-srv: Avoid null pointer deref during path establishment\n\nFor RTRS path establishment, RTRS client initiates and completes con_num\nof connections. After establishing all its connections, the information\nis exchanged between the client and server through the info_req message.\nDuring this exchange, it is essential that all connections have been\nestablished, and the state of the RTRS srv path is CONNECTED.\n\nSo add these sanity checks, to make sure we detect and abort process in\nerror scenarios to avoid null pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50062",
"url": "https://www.suse.com/security/cve/CVE-2024-50062"
},
{
"category": "external",
"summary": "SUSE Bug 1232232 for CVE-2024-50062",
"url": "https://bugzilla.suse.com/1232232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50062"
},
{
"cve": "CVE-2024-50067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobe: avoid out-of-bounds memory access of fetching args\n\nUprobe needs to fetch args into a percpu buffer, and then copy to ring\nbuffer to avoid non-atomic context problem.\n\nSometimes user-space strings, arrays can be very large, but the size of\npercpu buffer is only page size. And store_trace_args() won\u0027t check\nwhether these data exceeds a single page or not, caused out-of-bounds\nmemory access.\n\nIt could be reproduced by following steps:\n1. build kernel with CONFIG_KASAN enabled\n2. save follow program as test.c\n\n```\n\\#include \u003cstdio.h\u003e\n\\#include \u003cstdlib.h\u003e\n\\#include \u003cstring.h\u003e\n\n// If string length large than MAX_STRING_SIZE, the fetch_store_strlen()\n// will return 0, cause __get_data_size() return shorter size, and\n// store_trace_args() will not trigger out-of-bounds access.\n// So make string length less than 4096.\n\\#define STRLEN 4093\n\nvoid generate_string(char *str, int n)\n{\n int i;\n for (i = 0; i \u003c n; ++i)\n {\n char c = i % 26 + \u0027a\u0027;\n str[i] = c;\n }\n str[n-1] = \u0027\\0\u0027;\n}\n\nvoid print_string(char *str)\n{\n printf(\"%s\\n\", str);\n}\n\nint main()\n{\n char tmp[STRLEN];\n\n generate_string(tmp, STRLEN);\n print_string(tmp);\n\n return 0;\n}\n```\n3. compile program\n`gcc -o test test.c`\n\n4. get the offset of `print_string()`\n```\nobjdump -t test | grep -w print_string\n0000000000401199 g F .text 000000000000001b print_string\n```\n\n5. configure uprobe with offset 0x1199\n```\noff=0x1199\n\ncd /sys/kernel/debug/tracing/\necho \"p /root/test:${off} arg1=+0(%di):ustring arg2=\\$comm arg3=+0(%di):ustring\"\n \u003e uprobe_events\necho 1 \u003e events/uprobes/enable\necho 1 \u003e tracing_on\n```\n\n6. run `test`, and kasan will report error.\n==================================================================\nBUG: KASAN: use-after-free in strncpy_from_user+0x1d6/0x1f0\nWrite of size 8 at addr ffff88812311c004 by task test/499CPU: 0 UID: 0 PID: 499 Comm: test Not tainted 6.12.0-rc3+ #18\nHardware name: Red Hat KVM, BIOS 1.16.0-4.al8 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x55/0x70\n print_address_description.constprop.0+0x27/0x310\n kasan_report+0x10f/0x120\n ? strncpy_from_user+0x1d6/0x1f0\n strncpy_from_user+0x1d6/0x1f0\n ? rmqueue.constprop.0+0x70d/0x2ad0\n process_fetch_insn+0xb26/0x1470\n ? __pfx_process_fetch_insn+0x10/0x10\n ? _raw_spin_lock+0x85/0xe0\n ? __pfx__raw_spin_lock+0x10/0x10\n ? __pte_offset_map+0x1f/0x2d0\n ? unwind_next_frame+0xc5f/0x1f80\n ? arch_stack_walk+0x68/0xf0\n ? is_bpf_text_address+0x23/0x30\n ? kernel_text_address.part.0+0xbb/0xd0\n ? __kernel_text_address+0x66/0xb0\n ? unwind_get_return_address+0x5e/0xa0\n ? __pfx_stack_trace_consume_entry+0x10/0x10\n ? arch_stack_walk+0xa2/0xf0\n ? _raw_spin_lock_irqsave+0x8b/0xf0\n ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n ? depot_alloc_stack+0x4c/0x1f0\n ? _raw_spin_unlock_irqrestore+0xe/0x30\n ? stack_depot_save_flags+0x35d/0x4f0\n ? kasan_save_stack+0x34/0x50\n ? kasan_save_stack+0x24/0x50\n ? mutex_lock+0x91/0xe0\n ? __pfx_mutex_lock+0x10/0x10\n prepare_uprobe_buffer.part.0+0x2cd/0x500\n uprobe_dispatcher+0x2c3/0x6a0\n ? __pfx_uprobe_dispatcher+0x10/0x10\n ? __kasan_slab_alloc+0x4d/0x90\n handler_chain+0xdd/0x3e0\n handle_swbp+0x26e/0x3d0\n ? __pfx_handle_swbp+0x10/0x10\n ? uprobe_pre_sstep_notifier+0x151/0x1b0\n irqentry_exit_to_user_mode+0xe2/0x1b0\n asm_exc_int3+0x39/0x40\nRIP: 0033:0x401199\nCode: 01 c2 0f b6 45 fb 88 02 83 45 fc 01 8b 45 fc 3b 45 e4 7c b7 8b 45 e4 48 98 48 8d 50 ff 48 8b 45 e8 48 01 d0 ce\nRSP: 002b:00007ffdf00576a8 EFLAGS: 00000206\nRAX: 00007ffdf00576b0 RBX: 0000000000000000 RCX: 0000000000000ff2\nRDX: 0000000000000ffc RSI: 0000000000000ffd RDI: 00007ffdf00576b0\nRBP: 00007ffdf00586b0 R08: 00007feb2f9c0d20 R09: 00007feb2f9c0d20\nR10: 0000000000000001 R11: 0000000000000202 R12: 0000000000401040\nR13: 00007ffdf0058780 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\nThis commit enforces the buffer\u0027s maxlen less than a page-size to avoid\nstore_trace_args() out-of-memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50067",
"url": "https://www.suse.com/security/cve/CVE-2024-50067"
},
{
"category": "external",
"summary": "SUSE Bug 1232416 for CVE-2024-50067",
"url": "https://bugzilla.suse.com/1232416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50067"
},
{
"cve": "CVE-2024-50073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: Fix use-after-free in gsm_cleanup_mux\n\nBUG: KASAN: slab-use-after-free in gsm_cleanup_mux+0x77b/0x7b0\ndrivers/tty/n_gsm.c:3160 [n_gsm]\nRead of size 8 at addr ffff88815fe99c00 by task poc/3379\nCPU: 0 UID: 0 PID: 3379 Comm: poc Not tainted 6.11.0+ #56\nHardware name: VMware, Inc. VMware Virtual Platform/440BX\nDesktop Reference Platform, BIOS 6.00 11/12/2020\nCall Trace:\n \u003cTASK\u003e\n gsm_cleanup_mux+0x77b/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n __pfx_gsm_cleanup_mux+0x10/0x10 drivers/tty/n_gsm.c:3124 [n_gsm]\n __pfx_sched_clock_cpu+0x10/0x10 kernel/sched/clock.c:389\n update_load_avg+0x1c1/0x27b0 kernel/sched/fair.c:4500\n __pfx_min_vruntime_cb_rotate+0x10/0x10 kernel/sched/fair.c:846\n __rb_insert_augmented+0x492/0xbf0 lib/rbtree.c:161\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n _raw_spin_lock_irqsave+0x92/0xf0 arch/x86/include/asm/atomic.h:107\n __pfx_gsmld_ioctl+0x10/0x10 drivers/tty/n_gsm.c:3822 [n_gsm]\n ktime_get+0x5e/0x140 kernel/time/timekeeping.c:195\n ldsem_down_read+0x94/0x4e0 arch/x86/include/asm/atomic64_64.h:79\n __pfx_ldsem_down_read+0x10/0x10 drivers/tty/tty_ldsem.c:338\n __pfx_do_vfs_ioctl+0x10/0x10 fs/ioctl.c:805\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\nAllocated by task 65:\n gsm_data_alloc.constprop.0+0x27/0x190 drivers/tty/n_gsm.c:926 [n_gsm]\n gsm_send+0x2c/0x580 drivers/tty/n_gsm.c:819 [n_gsm]\n gsm1_receive+0x547/0xad0 drivers/tty/n_gsm.c:3038 [n_gsm]\n gsmld_receive_buf+0x176/0x280 drivers/tty/n_gsm.c:3609 [n_gsm]\n tty_ldisc_receive_buf+0x101/0x1e0 drivers/tty/tty_buffer.c:391\n tty_port_default_receive_buf+0x61/0xa0 drivers/tty/tty_port.c:39\n flush_to_ldisc+0x1b0/0x750 drivers/tty/tty_buffer.c:445\n process_scheduled_works+0x2b0/0x10d0 kernel/workqueue.c:3229\n worker_thread+0x3dc/0x950 kernel/workqueue.c:3391\n kthread+0x2a3/0x370 kernel/kthread.c:389\n ret_from_fork+0x2d/0x70 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:257\n\nFreed by task 3367:\n kfree+0x126/0x420 mm/slub.c:4580\n gsm_cleanup_mux+0x36c/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\n[Analysis]\ngsm_msg on the tx_ctrl_list or tx_data_list of gsm_mux\ncan be freed by multi threads through ioctl,which leads\nto the occurrence of uaf. Protect it by gsm tx lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50073",
"url": "https://www.suse.com/security/cve/CVE-2024-50073"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232520 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1232520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50073"
},
{
"cve": "CVE-2024-50074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50074"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nparport: Proper fix for array out-of-bounds access\n\nThe recent fix for array out-of-bounds accesses replaced sprintf()\ncalls blindly with snprintf(). However, since snprintf() returns the\nwould-be-printed size, not the actually output size, the length\ncalculation can still go over the given limit.\n\nUse scnprintf() instead of snprintf(), which returns the actually\noutput letters, for addressing the potential out-of-bounds access\nproperly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50074",
"url": "https://www.suse.com/security/cve/CVE-2024-50074"
},
{
"category": "external",
"summary": "SUSE Bug 1232507 for CVE-2024-50074",
"url": "https://bugzilla.suse.com/1232507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50074"
},
{
"cve": "CVE-2024-50077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix multiple init when debugfs is disabled\n\nIf bt_debugfs is not created successfully, which happens if either\nCONFIG_DEBUG_FS or CONFIG_DEBUG_FS_ALLOW_ALL is unset, then iso_init()\nreturns early and does not set iso_inited to true. This means that a\nsubsequent call to iso_init() will result in duplicate calls to\nproto_register(), bt_sock_register(), etc.\n\nWith CONFIG_LIST_HARDENED and CONFIG_BUG_ON_DATA_CORRUPTION enabled, the\nduplicate call to proto_register() triggers this BUG():\n\n list_add double add: new=ffffffffc0b280d0, prev=ffffffffbab56250,\n next=ffffffffc0b280d0.\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:35!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 2 PID: 887 Comm: bluetoothd Not tainted 6.10.11-1-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x9a/0xa0\n ...\n __list_add_valid_or_report+0x9a/0xa0\n proto_register+0x2b5/0x340\n iso_init+0x23/0x150 [bluetooth]\n set_iso_socket_func+0x68/0x1b0 [bluetooth]\n kmem_cache_free+0x308/0x330\n hci_sock_sendmsg+0x990/0x9e0 [bluetooth]\n __sock_sendmsg+0x7b/0x80\n sock_write_iter+0x9a/0x110\n do_iter_readv_writev+0x11d/0x220\n vfs_writev+0x180/0x3e0\n do_writev+0xca/0x100\n ...\n\nThis change removes the early return. The check for iso_debugfs being\nNULL was unnecessary, it is always NULL when iso_inited is false.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50077",
"url": "https://www.suse.com/security/cve/CVE-2024-50077"
},
{
"category": "external",
"summary": "SUSE Bug 1232504 for CVE-2024-50077",
"url": "https://bugzilla.suse.com/1232504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50077"
},
{
"cve": "CVE-2024-50078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Call iso_exit() on module unload\n\nIf iso_init() has been called, iso_exit() must be called on module\nunload. Without that, the struct proto that iso_init() registered with\nproto_register() becomes invalid, which could cause unpredictable\nproblems later. In my case, with CONFIG_LIST_HARDENED and\nCONFIG_BUG_ON_DATA_CORRUPTION enabled, loading the module again usually\ntriggers this BUG():\n\n list_add corruption. next-\u003eprev should be prev (ffffffffb5355fd0),\n but was 0000000000000068. (next=ffffffffc0a010d0).\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:29!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 4159 Comm: modprobe Not tainted 6.10.11-4+bt2-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x61/0xa0\n ...\n __list_add_valid_or_report+0x61/0xa0\n proto_register+0x299/0x320\n hci_sock_init+0x16/0xc0 [bluetooth]\n bt_init+0x68/0xd0 [bluetooth]\n __pfx_bt_init+0x10/0x10 [bluetooth]\n do_one_initcall+0x80/0x2f0\n do_init_module+0x8b/0x230\n __do_sys_init_module+0x15f/0x190\n do_syscall_64+0x68/0x110\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50078",
"url": "https://www.suse.com/security/cve/CVE-2024-50078"
},
{
"category": "external",
"summary": "SUSE Bug 1232503 for CVE-2024-50078",
"url": "https://bugzilla.suse.com/1232503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50078"
},
{
"cve": "CVE-2024-50082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race\n\nWe\u0027re seeing crashes from rq_qos_wake_function that look like this:\n\n BUG: unable to handle page fault for address: ffffafe180a40084\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 100000067 P4D 100000067 PUD 10027c067 PMD 10115d067 PTE 0\n Oops: Oops: 0002 [#1] PREEMPT SMP PTI\n CPU: 17 UID: 0 PID: 0 Comm: swapper/17 Not tainted 6.12.0-rc3-00013-geca631b8fe80 #11\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:_raw_spin_lock_irqsave+0x1d/0x40\n Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 41 54 9c 41 5c fa 65 ff 05 62 97 30 4c 31 c0 ba 01 00 00 00 \u003cf0\u003e 0f b1 17 75 0a 4c 89 e0 41 5c c3 cc cc cc cc 89 c6 e8 2c 0b 00\n RSP: 0018:ffffafe180580ca0 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: ffffafe180a3f7a8 RCX: 0000000000000011\n RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffafe180a40084\n RBP: 0000000000000000 R08: 00000000001e7240 R09: 0000000000000011\n R10: 0000000000000028 R11: 0000000000000888 R12: 0000000000000002\n R13: ffffafe180a40084 R14: 0000000000000000 R15: 0000000000000003\n FS: 0000000000000000(0000) GS:ffff9aaf1f280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffafe180a40084 CR3: 000000010e428002 CR4: 0000000000770ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n try_to_wake_up+0x5a/0x6a0\n rq_qos_wake_function+0x71/0x80\n __wake_up_common+0x75/0xa0\n __wake_up+0x36/0x60\n scale_up.part.0+0x50/0x110\n wb_timer_fn+0x227/0x450\n ...\n\nSo rq_qos_wake_function() calls wake_up_process(data-\u003etask), which calls\ntry_to_wake_up(), which faults in raw_spin_lock_irqsave(\u0026p-\u003epi_lock).\n\np comes from data-\u003etask, and data comes from the waitqueue entry, which\nis stored on the waiter\u0027s stack in rq_qos_wait(). Analyzing the core\ndump with drgn, I found that the waiter had already woken up and moved\non to a completely unrelated code path, clobbering what was previously\ndata-\u003etask. Meanwhile, the waker was passing the clobbered garbage in\ndata-\u003etask to wake_up_process(), leading to the crash.\n\nWhat\u0027s happening is that in between rq_qos_wake_function() deleting the\nwaitqueue entry and calling wake_up_process(), rq_qos_wait() is finding\nthat it already got a token and returning. The race looks like this:\n\nrq_qos_wait() rq_qos_wake_function()\n==============================================================\nprepare_to_wait_exclusive()\n data-\u003egot_token = true;\n list_del_init(\u0026curr-\u003eentry);\nif (data.got_token)\n break;\nfinish_wait(\u0026rqw-\u003ewait, \u0026data.wq);\n ^- returns immediately because\n list_empty_careful(\u0026wq_entry-\u003eentry)\n is true\n... return, go do something else ...\n wake_up_process(data-\u003etask)\n (NO LONGER VALID!)-^\n\nNormally, finish_wait() is supposed to synchronize against the waker.\nBut, as noted above, it is returning immediately because the waitqueue\nentry has already been removed from the waitqueue.\n\nThe bug is that rq_qos_wake_function() is accessing the waitqueue entry\nAFTER deleting it. Note that autoremove_wake_function() wakes the waiter\nand THEN deletes the waitqueue entry, which is the proper order.\n\nFix it by swapping the order. We also need to use\nlist_del_init_careful() to match the list_empty_careful() in\nfinish_wait().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50082",
"url": "https://www.suse.com/security/cve/CVE-2024-50082"
},
{
"category": "external",
"summary": "SUSE Bug 1232500 for CVE-2024-50082",
"url": "https://bugzilla.suse.com/1232500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50082"
},
{
"cve": "CVE-2024-50089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50089"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50089",
"url": "https://www.suse.com/security/cve/CVE-2024-50089"
},
{
"category": "external",
"summary": "SUSE Bug 1232860 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "external",
"summary": "SUSE Bug 1233250 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1233250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50089"
},
{
"cve": "CVE-2024-50093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: intel: int340x: processor: Fix warning during module unload\n\nThe processor_thermal driver uses pcim_device_enable() to enable a PCI\ndevice, which means the device will be automatically disabled on driver\ndetach. Thus there is no need to call pci_disable_device() again on it.\n\nWith recent PCI device resource management improvements, e.g. commit\nf748a07a0b64 (\"PCI: Remove legacy pcim_release()\"), this problem is\nexposed and triggers the warining below.\n\n [ 224.010735] proc_thermal_pci 0000:00:04.0: disabling already-disabled device\n [ 224.010747] WARNING: CPU: 8 PID: 4442 at drivers/pci/pci.c:2250 pci_disable_device+0xe5/0x100\n ...\n [ 224.010844] Call Trace:\n [ 224.010845] \u003cTASK\u003e\n [ 224.010847] ? show_regs+0x6d/0x80\n [ 224.010851] ? __warn+0x8c/0x140\n [ 224.010854] ? pci_disable_device+0xe5/0x100\n [ 224.010856] ? report_bug+0x1c9/0x1e0\n [ 224.010859] ? handle_bug+0x46/0x80\n [ 224.010862] ? exc_invalid_op+0x1d/0x80\n [ 224.010863] ? asm_exc_invalid_op+0x1f/0x30\n [ 224.010867] ? pci_disable_device+0xe5/0x100\n [ 224.010869] ? pci_disable_device+0xe5/0x100\n [ 224.010871] ? kfree+0x21a/0x2b0\n [ 224.010873] pcim_disable_device+0x20/0x30\n [ 224.010875] devm_action_release+0x16/0x20\n [ 224.010878] release_nodes+0x47/0xc0\n [ 224.010880] devres_release_all+0x9f/0xe0\n [ 224.010883] device_unbind_cleanup+0x12/0x80\n [ 224.010885] device_release_driver_internal+0x1ca/0x210\n [ 224.010887] driver_detach+0x4e/0xa0\n [ 224.010889] bus_remove_driver+0x6f/0xf0\n [ 224.010890] driver_unregister+0x35/0x60\n [ 224.010892] pci_unregister_driver+0x44/0x90\n [ 224.010894] proc_thermal_pci_driver_exit+0x14/0x5f0 [processor_thermal_device_pci]\n ...\n [ 224.010921] ---[ end trace 0000000000000000 ]---\n\nRemove the excess pci_disable_device() calls.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50093",
"url": "https://www.suse.com/security/cve/CVE-2024-50093"
},
{
"category": "external",
"summary": "SUSE Bug 1232877 for CVE-2024-50093",
"url": "https://bugzilla.suse.com/1232877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50093"
},
{
"cve": "CVE-2024-50095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mad: Improve handling of timed out WRs of mad agent\n\nCurrent timeout handler of mad agent acquires/releases mad_agent_priv\nlock for every timed out WRs. This causes heavy locking contention\nwhen higher no. of WRs are to be handled inside timeout handler.\n\nThis leads to softlockup with below trace in some use cases where\nrdma-cm path is used to establish connection between peer nodes\n\nTrace:\n-----\n BUG: soft lockup - CPU#4 stuck for 26s! [kworker/u128:3:19767]\n CPU: 4 PID: 19767 Comm: kworker/u128:3 Kdump: loaded Tainted: G OE\n ------- --- 5.14.0-427.13.1.el9_4.x86_64 #1\n Hardware name: Dell Inc. PowerEdge R740/01YM03, BIOS 2.4.8 11/26/2019\n Workqueue: ib_mad1 timeout_sends [ib_core]\n RIP: 0010:__do_softirq+0x78/0x2ac\n RSP: 0018:ffffb253449e4f98 EFLAGS: 00000246\n RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 000000000000001f\n RDX: 000000000000001d RSI: 000000003d1879ab RDI: fff363b66fd3a86b\n RBP: ffffb253604cbcd8 R08: 0000009065635f3b R09: 0000000000000000\n R10: 0000000000000040 R11: ffffb253449e4ff8 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040\n FS: 0000000000000000(0000) GS:ffff8caa1fc80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fd9ec9db900 CR3: 0000000891934006 CR4: 00000000007706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? __irq_exit_rcu+0xa1/0xc0\n ? watchdog_timer_fn+0x1b2/0x210\n ? __pfx_watchdog_timer_fn+0x10/0x10\n ? __hrtimer_run_queues+0x127/0x2c0\n ? hrtimer_interrupt+0xfc/0x210\n ? __sysvec_apic_timer_interrupt+0x5c/0x110\n ? sysvec_apic_timer_interrupt+0x37/0x90\n ? asm_sysvec_apic_timer_interrupt+0x16/0x20\n ? __do_softirq+0x78/0x2ac\n ? __do_softirq+0x60/0x2ac\n __irq_exit_rcu+0xa1/0xc0\n sysvec_call_function_single+0x72/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_call_function_single+0x16/0x20\n RIP: 0010:_raw_spin_unlock_irq+0x14/0x30\n RSP: 0018:ffffb253604cbd88 EFLAGS: 00000247\n RAX: 000000000001960d RBX: 0000000000000002 RCX: ffff8cad2a064800\n RDX: 000000008020001b RSI: 0000000000000001 RDI: ffff8cad5d39f66c\n RBP: ffff8cad5d39f600 R08: 0000000000000001 R09: 0000000000000000\n R10: ffff8caa443e0c00 R11: ffffb253604cbcd8 R12: ffff8cacb8682538\n R13: 0000000000000005 R14: ffffb253604cbd90 R15: ffff8cad5d39f66c\n cm_process_send_error+0x122/0x1d0 [ib_cm]\n timeout_sends+0x1dd/0x270 [ib_core]\n process_one_work+0x1e2/0x3b0\n ? __pfx_worker_thread+0x10/0x10\n worker_thread+0x50/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xdd/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x29/0x50\n \u003c/TASK\u003e\n\nSimplified timeout handler by creating local list of timed out WRs\nand invoke send handler post creating the list. The new method acquires/\nreleases lock once to fetch the list and hence helps to reduce locking\ncontetiong when processing higher no. of WRs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50095",
"url": "https://www.suse.com/security/cve/CVE-2024-50095"
},
{
"category": "external",
"summary": "SUSE Bug 1232873 for CVE-2024-50095",
"url": "https://bugzilla.suse.com/1232873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50095"
},
{
"cve": "CVE-2024-50096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error\n\nThe `nouveau_dmem_copy_one` function ensures that the copy push command is\nsent to the device firmware but does not track whether it was executed\nsuccessfully.\n\nIn the case of a copy error (e.g., firmware or hardware failure), the\ncopy push command will be sent via the firmware channel, and\n`nouveau_dmem_copy_one` will likely report success, leading to the\n`migrate_to_ram` function returning a dirty HIGH_USER page to the user.\n\nThis can result in a security vulnerability, as a HIGH_USER page that may\ncontain sensitive or corrupted data could be returned to the user.\n\nTo prevent this vulnerability, we allocate a zero page. Thus, in case of\nan error, a non-dirty (zero) page will be returned to the user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50096",
"url": "https://www.suse.com/security/cve/CVE-2024-50096"
},
{
"category": "external",
"summary": "SUSE Bug 1232870 for CVE-2024-50096",
"url": "https://bugzilla.suse.com/1232870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50096"
},
{
"cve": "CVE-2024-50098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down\n\nThere is a history of deadlock if reboot is performed at the beginning\nof booting. SDEV_QUIESCE was set for all LU\u0027s scsi_devices by UFS\nshutdown, and at that time the audio driver was waiting on\nblk_mq_submit_bio() holding a mutex_lock while reading the fw binary.\nAfter that, a deadlock issue occurred while audio driver shutdown was\nwaiting for mutex_unlock of blk_mq_submit_bio(). To solve this, set\nSDEV_OFFLINE for all LUs except WLUN, so that any I/O that comes down\nafter a UFS shutdown will return an error.\n\n[ 31.907781]I[0: swapper/0: 0] 1 130705007 1651079834 11289729804 0 D( 2) 3 ffffff882e208000 * init [device_shutdown]\n[ 31.907793]I[0: swapper/0: 0] Mutex: 0xffffff8849a2b8b0: owner[0xffffff882e28cb00 kworker/6:0 :49]\n[ 31.907806]I[0: swapper/0: 0] Call trace:\n[ 31.907810]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.907819]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.907826]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.907834]I[0: swapper/0: 0] schedule_preempt_disabled+0x24/0x40\n[ 31.907842]I[0: swapper/0: 0] __mutex_lock+0x408/0xdac\n[ 31.907849]I[0: swapper/0: 0] __mutex_lock_slowpath+0x14/0x24\n[ 31.907858]I[0: swapper/0: 0] mutex_lock+0x40/0xec\n[ 31.907866]I[0: swapper/0: 0] device_shutdown+0x108/0x280\n[ 31.907875]I[0: swapper/0: 0] kernel_restart+0x4c/0x11c\n[ 31.907883]I[0: swapper/0: 0] __arm64_sys_reboot+0x15c/0x280\n[ 31.907890]I[0: swapper/0: 0] invoke_syscall+0x70/0x158\n[ 31.907899]I[0: swapper/0: 0] el0_svc_common+0xb4/0xf4\n[ 31.907909]I[0: swapper/0: 0] do_el0_svc+0x2c/0xb0\n[ 31.907918]I[0: swapper/0: 0] el0_svc+0x34/0xe0\n[ 31.907928]I[0: swapper/0: 0] el0t_64_sync_handler+0x68/0xb4\n[ 31.907937]I[0: swapper/0: 0] el0t_64_sync+0x1a0/0x1a4\n\n[ 31.908774]I[0: swapper/0: 0] 49 0 11960702 11236868007 0 D( 2) 6 ffffff882e28cb00 * kworker/6:0 [__bio_queue_enter]\n[ 31.908783]I[0: swapper/0: 0] Call trace:\n[ 31.908788]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.908796]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.908803]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.908811]I[0: swapper/0: 0] __bio_queue_enter+0xb8/0x178\n[ 31.908818]I[0: swapper/0: 0] blk_mq_submit_bio+0x194/0x67c\n[ 31.908827]I[0: swapper/0: 0] __submit_bio+0xb8/0x19c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50098",
"url": "https://www.suse.com/security/cve/CVE-2024-50098"
},
{
"category": "external",
"summary": "SUSE Bug 1232881 for CVE-2024-50098",
"url": "https://bugzilla.suse.com/1232881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50098"
},
{
"cve": "CVE-2024-50099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Remove broken LDR (literal) uprobe support\n\nThe simulate_ldr_literal() and simulate_ldrsw_literal() functions are\nunsafe to use for uprobes. Both functions were originally written for\nuse with kprobes, and access memory with plain C accesses. When uprobes\nwas added, these were reused unmodified even though they cannot safely\naccess user memory.\n\nThere are three key problems:\n\n1) The plain C accesses do not have corresponding extable entries, and\n thus if they encounter a fault the kernel will treat these as\n unintentional accesses to user memory, resulting in a BUG() which\n will kill the kernel thread, and likely lead to further issues (e.g.\n lockup or panic()).\n\n2) The plain C accesses are subject to HW PAN and SW PAN, and so when\n either is in use, any attempt to simulate an access to user memory\n will fault. Thus neither simulate_ldr_literal() nor\n simulate_ldrsw_literal() can do anything useful when simulating a\n user instruction on any system with HW PAN or SW PAN.\n\n3) The plain C accesses are privileged, as they run in kernel context,\n and in practice can access a small range of kernel virtual addresses.\n The instructions they simulate have a range of +/-1MiB, and since the\n simulated instructions must itself be a user instructions in the\n TTBR0 address range, these can address the final 1MiB of the TTBR1\n acddress range by wrapping downwards from an address in the first\n 1MiB of the TTBR0 address range.\n\n In contemporary kernels the last 8MiB of TTBR1 address range is\n reserved, and accesses to this will always fault, meaning this is no\n worse than (1).\n\n Historically, it was theoretically possible for the linear map or\n vmemmap to spill into the final 8MiB of the TTBR1 address range, but\n in practice this is extremely unlikely to occur as this would\n require either:\n\n * Having enough physical memory to fill the entire linear map all the\n way to the final 1MiB of the TTBR1 address range.\n\n * Getting unlucky with KASLR randomization of the linear map such\n that the populated region happens to overlap with the last 1MiB of\n the TTBR address range.\n\n ... and in either case if we were to spill into the final page there\n would be larger problems as the final page would alias with error\n pointers.\n\nPractically speaking, (1) and (2) are the big issues. Given there have\nbeen no reports of problems since the broken code was introduced, it\nappears that no-one is relying on probing these instructions with\nuprobes.\n\nAvoid these issues by not allowing uprobes on LDR (literal) and LDRSW\n(literal), limiting the use of simulate_ldr_literal() and\nsimulate_ldrsw_literal() to kprobes. Attempts to place uprobes on LDR\n(literal) and LDRSW (literal) will be rejected as\narm_probe_decode_insn() will return INSN_REJECTED. In future we can\nconsider introducing working uprobes support for these instructions, but\nthis will require more significant work.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50099",
"url": "https://www.suse.com/security/cve/CVE-2024-50099"
},
{
"category": "external",
"summary": "SUSE Bug 1232887 for CVE-2024-50099",
"url": "https://bugzilla.suse.com/1232887"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50099"
},
{
"cve": "CVE-2024-50103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()\n\nA devm_kzalloc() in asoc_qcom_lpass_cpu_platform_probe() could\npossibly return NULL pointer. NULL Pointer Dereference may be\ntriggerred without addtional check.\nAdd a NULL check for the returned pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50103",
"url": "https://www.suse.com/security/cve/CVE-2024-50103"
},
{
"category": "external",
"summary": "SUSE Bug 1232878 for CVE-2024-50103",
"url": "https://bugzilla.suse.com/1232878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50103"
},
{
"cve": "CVE-2024-50108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable PSR-SU on Parade 08-01 TCON too\n\nStuart Hayhurst has found that both at bootup and fullscreen VA-API video\nis leading to black screens for around 1 second and kernel WARNING [1] traces\nwhen calling dmub_psr_enable() with Parade 08-01 TCON.\n\nThese symptoms all go away with PSR-SU disabled for this TCON, so disable\nit for now while DMUB traces [2] from the failure can be analyzed and the failure\nstate properly root caused.\n\n(cherry picked from commit afb634a6823d8d9db23c5fb04f79c5549349628b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50108",
"url": "https://www.suse.com/security/cve/CVE-2024-50108"
},
{
"category": "external",
"summary": "SUSE Bug 1232884 for CVE-2024-50108",
"url": "https://bugzilla.suse.com/1232884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50108"
},
{
"cve": "CVE-2024-50110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: fix one more kernel-infoleak in algo dumping\n\nDuring fuzz testing, the following issue was discovered:\n\nBUG: KMSAN: kernel-infoleak in _copy_to_iter+0x598/0x2a30\n _copy_to_iter+0x598/0x2a30\n __skb_datagram_iter+0x168/0x1060\n skb_copy_datagram_iter+0x5b/0x220\n netlink_recvmsg+0x362/0x1700\n sock_recvmsg+0x2dc/0x390\n __sys_recvfrom+0x381/0x6d0\n __x64_sys_recvfrom+0x130/0x200\n x64_sys_call+0x32c8/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was stored to memory at:\n copy_to_user_state_extra+0xcc1/0x1e00\n dump_one_state+0x28c/0x5f0\n xfrm_state_walk+0x548/0x11e0\n xfrm_dump_sa+0x1e0/0x840\n netlink_dump+0x943/0x1c40\n __netlink_dump_start+0x746/0xdb0\n xfrm_user_rcv_msg+0x429/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was created at:\n __kmalloc+0x571/0xd30\n attach_auth+0x106/0x3e0\n xfrm_add_sa+0x2aa0/0x4230\n xfrm_user_rcv_msg+0x832/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nBytes 328-379 of 732 are uninitialized\nMemory access of size 732 starts at ffff88800e18e000\nData copied to user address 00007ff30f48aff0\n\nCPU: 2 PID: 18167 Comm: syz-executor.0 Not tainted 6.8.11 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n\nFixes copying of xfrm algorithms where some random\ndata of the structure fields can end up in userspace.\nPadding in structures may be filled with random (possibly sensitve)\ndata and should never be given directly to user-space.\n\nA similar issue was resolved in the commit\n8222d5910dae (\"xfrm: Zero padding when dumping algos and encap\")\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50110",
"url": "https://www.suse.com/security/cve/CVE-2024-50110"
},
{
"category": "external",
"summary": "SUSE Bug 1232885 for CVE-2024-50110",
"url": "https://bugzilla.suse.com/1232885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50110"
},
{
"cve": "CVE-2024-50115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory\n\nIgnore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits\n4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn\u0027t\nenforce 32-byte alignment of nCR3.\n\nIn the absolute worst case scenario, failure to ignore bits 4:0 can result\nin an out-of-bounds read, e.g. if the target page is at the end of a\nmemslot, and the VMM isn\u0027t using guard pages.\n\nPer the APM:\n\n The CR3 register points to the base address of the page-directory-pointer\n table. The page-directory-pointer table is aligned on a 32-byte boundary,\n with the low 5 address bits 4:0 assumed to be 0.\n\nAnd the SDM\u0027s much more explicit:\n\n 4:0 Ignored\n\nNote, KVM gets this right when loading PDPTRs, it\u0027s only the nSVM flow\nthat is broken.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50115",
"url": "https://www.suse.com/security/cve/CVE-2024-50115"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232919 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "external",
"summary": "SUSE Bug 1233019 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1233019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50115"
},
{
"cve": "CVE-2024-50116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of buffer delay flag\n\nSyzbot reported that after nilfs2 reads a corrupted file system image\nand degrades to read-only, the BUG_ON check for the buffer delay flag\nin submit_bh_wbc() may fail, causing a kernel bug.\n\nThis is because the buffer delay flag is not cleared when clearing the\nbuffer state flags to discard a page/folio or a buffer head. So, fix\nthis.\n\nThis became necessary when the use of nilfs2\u0027s own page clear routine\nwas expanded. This state inconsistency does not occur if the buffer\nis written normally by log writing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50116",
"url": "https://www.suse.com/security/cve/CVE-2024-50116"
},
{
"category": "external",
"summary": "SUSE Bug 1232892 for CVE-2024-50116",
"url": "https://bugzilla.suse.com/1232892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50116"
},
{
"cve": "CVE-2024-50117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Guard against bad data for ATIF ACPI method\n\nIf a BIOS provides bad data in response to an ATIF method call\nthis causes a NULL pointer dereference in the caller.\n\n```\n? show_regs (arch/x86/kernel/dumpstack.c:478 (discriminator 1))\n? __die (arch/x86/kernel/dumpstack.c:423 arch/x86/kernel/dumpstack.c:434)\n? page_fault_oops (arch/x86/mm/fault.c:544 (discriminator 2) arch/x86/mm/fault.c:705 (discriminator 2))\n? do_user_addr_fault (arch/x86/mm/fault.c:440 (discriminator 1) arch/x86/mm/fault.c:1232 (discriminator 1))\n? acpi_ut_update_object_reference (drivers/acpi/acpica/utdelete.c:642)\n? exc_page_fault (arch/x86/mm/fault.c:1542)\n? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:387 (discriminator 2)) amdgpu\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:386 (discriminator 1)) amdgpu\n```\n\nIt has been encountered on at least one system, so guard for it.\n\n(cherry picked from commit c9b7c809b89f24e9372a4e7f02d64c950b07fdee)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50117",
"url": "https://www.suse.com/security/cve/CVE-2024-50117"
},
{
"category": "external",
"summary": "SUSE Bug 1232897 for CVE-2024-50117",
"url": "https://bugzilla.suse.com/1232897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50117"
},
{
"cve": "CVE-2024-50124",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50124"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix UAF on iso_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for iso_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\niso_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50124",
"url": "https://www.suse.com/security/cve/CVE-2024-50124"
},
{
"category": "external",
"summary": "SUSE Bug 1232926 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "external",
"summary": "SUSE Bug 1232927 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50124"
},
{
"cve": "CVE-2024-50125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for sco_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\nsco_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50125",
"url": "https://www.suse.com/security/cve/CVE-2024-50125"
},
{
"category": "external",
"summary": "SUSE Bug 1232928 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "external",
"summary": "SUSE Bug 1232929 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50125"
},
{
"cve": "CVE-2024-50127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix use-after-free in taprio_change()\n\nIn \u0027taprio_change()\u0027, \u0027admin\u0027 pointer may become dangling due to sched\nswitch / removal caused by \u0027advance_sched()\u0027, and critical section\nprotected by \u0027q-\u003ecurrent_entry_lock\u0027 is too small to prevent from such\na scenario (which causes use-after-free detected by KASAN). Fix this\nby prefer \u0027rcu_replace_pointer()\u0027 over \u0027rcu_assign_pointer()\u0027 to update\n\u0027admin\u0027 immediately before an attempt to schedule freeing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50127",
"url": "https://www.suse.com/security/cve/CVE-2024-50127"
},
{
"category": "external",
"summary": "SUSE Bug 1232907 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "external",
"summary": "SUSE Bug 1232908 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50127"
},
{
"cve": "CVE-2024-50128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50128"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: fix global oob in wwan_rtnl_policy\n\nThe variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to\na global out-of-bounds read when parsing the netlink attributes. Exactly\nsame bug cause as the oob fixed in commit b33fb5b801c6 (\"net: qualcomm:\nrmnet: fix global oob in rmnet_policy\").\n\n==================================================================\nBUG: KASAN: global-out-of-bounds in validate_nla lib/nlattr.c:388 [inline]\nBUG: KASAN: global-out-of-bounds in __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\nRead of size 1 at addr ffffffff8b09cb60 by task syz.1.66276/323862\n\nCPU: 0 PID: 323862 Comm: syz.1.66276 Not tainted 6.1.70 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x14f/0x750 mm/kasan/report.c:395\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n validate_nla lib/nlattr.c:388 [inline]\n __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\n __nla_parse+0x3c/0x50 lib/nlattr.c:700\n nla_parse_nested_deprecated include/net/netlink.h:1269 [inline]\n __rtnl_newlink net/core/rtnetlink.c:3514 [inline]\n rtnl_newlink+0x7bc/0x1fd0 net/core/rtnetlink.c:3623\n rtnetlink_rcv_msg+0x794/0xef0 net/core/rtnetlink.c:6122\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f67b19a24ad\nRSP: 002b:00007f67b17febb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f67b1b45f80 RCX: 00007f67b19a24ad\nRDX: 0000000000000000 RSI: 0000000020005e40 RDI: 0000000000000004\nRBP: 00007f67b1a1e01d R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffd2513764f R14: 00007ffd251376e0 R15: 00007f67b17fed40\n \u003c/TASK\u003e\n\nThe buggy address belongs to the variable:\n wwan_rtnl_policy+0x20/0x40\n\nThe buggy address belongs to the physical page:\npage:ffffea00002c2700 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb09c\nflags: 0xfff00000001000(reserved|node=0|zone=1|lastcpupid=0x7ff)\nraw: 00fff00000001000 ffffea00002c2708 ffffea00002c2708 0000000000000000\nraw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner info is not present (never set?)\n\nMemory state around the buggy address:\n ffffffff8b09ca00: 05 f9 f9 f9 05 f9 f9 f9 00 01 f9 f9 00 01 f9 f9\n ffffffff8b09ca80: 00 00 00 05 f9 f9 f9 f9 00 00 03 f9 f9 f9 f9 f9\n\u003effffffff8b09cb00: 00 00 00 00 05 f9 f9 f9 00 00 00 00 f9 f9 f9 f9\n ^\n ffffffff8b09cb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n==================================================================\n\nAccording to the comment of `nla_parse_nested_deprecated`, use correct size\n`IFLA_WWAN_MAX` here to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50128",
"url": "https://www.suse.com/security/cve/CVE-2024-50128"
},
{
"category": "external",
"summary": "SUSE Bug 1232905 for CVE-2024-50128",
"url": "https://bugzilla.suse.com/1232905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50128"
},
{
"cve": "CVE-2024-50131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Consider the NULL character when validating the event length\n\nstrlen() returns a string length excluding the null byte. If the string\nlength equals to the maximum buffer length, the buffer will have no\nspace for the NULL terminating character.\n\nThis commit checks this condition and returns failure for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50131",
"url": "https://www.suse.com/security/cve/CVE-2024-50131"
},
{
"category": "external",
"summary": "SUSE Bug 1232896 for CVE-2024-50131",
"url": "https://bugzilla.suse.com/1232896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50131"
},
{
"cve": "CVE-2024-50134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA\n\nReplace the fake VLA at end of the vbva_mouse_pointer_shape shape with\na real VLA to fix a \"memcpy: detected field-spanning write error\" warning:\n\n[ 13.319813] memcpy: detected field-spanning write (size 16896) of single field \"p-\u003edata\" at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 (size 4)\n[ 13.319841] WARNING: CPU: 0 PID: 1105 at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 hgsmi_update_pointer_shape+0x192/0x1c0 [vboxvideo]\n[ 13.320038] Call Trace:\n[ 13.320173] hgsmi_update_pointer_shape [vboxvideo]\n[ 13.320184] vbox_cursor_atomic_update [vboxvideo]\n\nNote as mentioned in the added comment it seems the original length\ncalculation for the allocated and send hgsmi buffer is 4 bytes too large.\nChanging this is not the goal of this patch, so this behavior is kept.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50134",
"url": "https://www.suse.com/security/cve/CVE-2024-50134"
},
{
"category": "external",
"summary": "SUSE Bug 1232890 for CVE-2024-50134",
"url": "https://bugzilla.suse.com/1232890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50134"
},
{
"cve": "CVE-2024-50135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix race condition between reset and nvme_dev_disable()\n\nnvme_dev_disable() modifies the dev-\u003eonline_queues field, therefore\nnvme_pci_update_nr_queues() should avoid racing against it, otherwise\nwe could end up passing invalid values to blk_mq_update_nr_hw_queues().\n\n WARNING: CPU: 39 PID: 61303 at drivers/pci/msi/api.c:347\n pci_irq_get_affinity+0x187/0x210\n Workqueue: nvme-reset-wq nvme_reset_work [nvme]\n RIP: 0010:pci_irq_get_affinity+0x187/0x210\n Call Trace:\n \u003cTASK\u003e\n ? blk_mq_pci_map_queues+0x87/0x3c0\n ? pci_irq_get_affinity+0x187/0x210\n blk_mq_pci_map_queues+0x87/0x3c0\n nvme_pci_map_queues+0x189/0x460 [nvme]\n blk_mq_update_nr_hw_queues+0x2a/0x40\n nvme_reset_work+0x1be/0x2a0 [nvme]\n\nFix the bug by locking the shutdown_lock mutex before using\ndev-\u003eonline_queues. Give up if nvme_dev_disable() is running or if\nit has been executed already.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50135",
"url": "https://www.suse.com/security/cve/CVE-2024-50135"
},
{
"category": "external",
"summary": "SUSE Bug 1232888 for CVE-2024-50135",
"url": "https://bugzilla.suse.com/1232888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50135"
},
{
"cve": "CVE-2024-50138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Use raw_spinlock_t in ringbuf\n\nThe function __bpf_ringbuf_reserve is invoked from a tracepoint, which\ndisables preemption. Using spinlock_t in this context can lead to a\n\"sleep in atomic\" warning in the RT variant. This issue is illustrated\nin the example below:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 556208, name: test_progs\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\nINFO: lockdep is turned off.\nPreemption disabled at:\n[\u003cffffd33a5c88ea44\u003e] migrate_enable+0xc0/0x39c\nCPU: 7 PID: 556208 Comm: test_progs Tainted: G\nHardware name: Qualcomm SA8775P Ride (DT)\nCall trace:\n dump_backtrace+0xac/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0xac/0xe8\n dump_stack+0x18/0x30\n __might_resched+0x3bc/0x4fc\n rt_spin_lock+0x8c/0x1a4\n __bpf_ringbuf_reserve+0xc4/0x254\n bpf_ringbuf_reserve_dynptr+0x5c/0xdc\n bpf_prog_ac3d15160d62622a_test_read_write+0x104/0x238\n trace_call_bpf+0x238/0x774\n perf_call_bpf_enter.isra.0+0x104/0x194\n perf_syscall_enter+0x2f8/0x510\n trace_sys_enter+0x39c/0x564\n syscall_trace_enter+0x220/0x3c0\n do_el0_svc+0x138/0x1dc\n el0_svc+0x54/0x130\n el0t_64_sync_handler+0x134/0x150\n el0t_64_sync+0x17c/0x180\n\nSwitch the spinlock to raw_spinlock_t to avoid this error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50138",
"url": "https://www.suse.com/security/cve/CVE-2024-50138"
},
{
"category": "external",
"summary": "SUSE Bug 1232935 for CVE-2024-50138",
"url": "https://bugzilla.suse.com/1232935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50138"
},
{
"cve": "CVE-2024-50141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context\n\nPRMT needs to find the correct type of block to translate the PA-VA\nmapping for EFI runtime services.\n\nThe issue arises because the PRMT is finding a block of type\nEFI_CONVENTIONAL_MEMORY, which is not appropriate for runtime services\nas described in Section 2.2.2 (Runtime Services) of the UEFI\nSpecification [1]. Since the PRM handler is a type of runtime service,\nthis causes an exception when the PRM handler is called.\n\n [Firmware Bug]: Unable to handle paging request in EFI runtime service\n WARNING: CPU: 22 PID: 4330 at drivers/firmware/efi/runtime-wrappers.c:341\n __efi_queue_work+0x11c/0x170\n Call trace:\n\nLet PRMT find a block with EFI_MEMORY_RUNTIME for PRM handler and PRM\ncontext.\n\nIf no suitable block is found, a warning message will be printed, but\nthe procedure continues to manage the next PRM handler.\n\nHowever, if the PRM handler is actually called without proper allocation,\nit would result in a failure during error handling.\n\nBy using the correct memory types for runtime services, ensure that the\nPRM handler and the context are properly mapped in the virtual address\nspace during runtime, preventing the paging request error.\n\nThe issue is really that only memory that has been remapped for runtime\nby the firmware can be used by the PRM handler, and so the region needs\nto have the EFI_MEMORY_RUNTIME attribute.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50141",
"url": "https://www.suse.com/security/cve/CVE-2024-50141"
},
{
"category": "external",
"summary": "SUSE Bug 1233065 for CVE-2024-50141",
"url": "https://bugzilla.suse.com/1233065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50141"
},
{
"cve": "CVE-2024-50146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t call cleanup on profile rollback failure\n\nWhen profile rollback fails in mlx5e_netdev_change_profile, the netdev\nprofile var is left set to NULL. Avoid a crash when unloading the driver\nby not calling profile-\u003ecleanup in such a case.\n\nThis was encountered while testing, with the original trigger that\nthe wq rescuer thread creation got interrupted (presumably due to\nCtrl+C-ing modprobe), which gets converted to ENOMEM (-12) by\nmlx5e_priv_init, the profile rollback also fails for the same reason\n(signal still active) so the profile is left as NULL, leading to a crash\nlater in _mlx5e_remove.\n\n [ 732.473932] mlx5_core 0000:08:00.1: E-Switch: Unload vfs: mode(OFFLOADS), nvfs(2), necvfs(0), active vports(2)\n [ 734.525513] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.557372] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.559187] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: new profile init failed, -12\n [ 734.560153] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.589378] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.591136] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n [ 745.537492] BUG: kernel NULL pointer dereference, address: 0000000000000008\n [ 745.538222] #PF: supervisor read access in kernel mode\n\u003csnipped\u003e\n [ 745.551290] Call Trace:\n [ 745.551590] \u003cTASK\u003e\n [ 745.551866] ? __die+0x20/0x60\n [ 745.552218] ? page_fault_oops+0x150/0x400\n [ 745.555307] ? exc_page_fault+0x79/0x240\n [ 745.555729] ? asm_exc_page_fault+0x22/0x30\n [ 745.556166] ? mlx5e_remove+0x6b/0xb0 [mlx5_core]\n [ 745.556698] auxiliary_bus_remove+0x18/0x30\n [ 745.557134] device_release_driver_internal+0x1df/0x240\n [ 745.557654] bus_remove_device+0xd7/0x140\n [ 745.558075] device_del+0x15b/0x3c0\n [ 745.558456] mlx5_rescan_drivers_locked.part.0+0xb1/0x2f0 [mlx5_core]\n [ 745.559112] mlx5_unregister_device+0x34/0x50 [mlx5_core]\n [ 745.559686] mlx5_uninit_one+0x46/0xf0 [mlx5_core]\n [ 745.560203] remove_one+0x4e/0xd0 [mlx5_core]\n [ 745.560694] pci_device_remove+0x39/0xa0\n [ 745.561112] device_release_driver_internal+0x1df/0x240\n [ 745.561631] driver_detach+0x47/0x90\n [ 745.562022] bus_remove_driver+0x84/0x100\n [ 745.562444] pci_unregister_driver+0x3b/0x90\n [ 745.562890] mlx5_cleanup+0xc/0x1b [mlx5_core]\n [ 745.563415] __x64_sys_delete_module+0x14d/0x2f0\n [ 745.563886] ? kmem_cache_free+0x1b0/0x460\n [ 745.564313] ? lockdep_hardirqs_on_prepare+0xe2/0x190\n [ 745.564825] do_syscall_64+0x6d/0x140\n [ 745.565223] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n [ 745.565725] RIP: 0033:0x7f1579b1288b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50146",
"url": "https://www.suse.com/security/cve/CVE-2024-50146"
},
{
"category": "external",
"summary": "SUSE Bug 1233056 for CVE-2024-50146",
"url": "https://bugzilla.suse.com/1233056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50146"
},
{
"cve": "CVE-2024-50147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix command bitmask initialization\n\nCommand bitmask have a dedicated bit for MANAGE_PAGES command, this bit\nisn\u0027t Initialize during command bitmask Initialization, only during\nMANAGE_PAGES.\n\nIn addition, mlx5_cmd_trigger_completions() is trying to trigger\ncompletion for MANAGE_PAGES command as well.\n\nHence, in case health error occurred before any MANAGE_PAGES command\nhave been invoke (for example, during mlx5_enable_hca()),\nmlx5_cmd_trigger_completions() will try to trigger completion for\nMANAGE_PAGES command, which will result in null-ptr-deref error.[1]\n\nFix it by Initialize command bitmask correctly.\n\nWhile at it, re-write the code for better understanding.\n\n[1]\nBUG: KASAN: null-ptr-deref in mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\nWrite of size 4 at addr 0000000000000214 by task kworker/u96:2/12078\nCPU: 10 PID: 12078 Comm: kworker/u96:2 Not tainted 6.9.0-rc2_for_upstream_debug_2024_04_07_19_01 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_fatal_reporter_err_work [mlx5_core]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x7e/0xc0\n kasan_report+0xb9/0xf0\n kasan_check_range+0xec/0x190\n mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\n mlx5_cmd_flush+0x94/0x240 [mlx5_core]\n enter_error_state+0x6c/0xd0 [mlx5_core]\n mlx5_fw_fatal_reporter_err_work+0xf3/0x480 [mlx5_core]\n process_one_work+0x787/0x1490\n ? lockdep_hardirqs_on_prepare+0x400/0x400\n ? pwq_dec_nr_in_flight+0xda0/0xda0\n ? assign_work+0x168/0x240\n worker_thread+0x586/0xd30\n ? rescuer_thread+0xae0/0xae0\n kthread+0x2df/0x3b0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50147",
"url": "https://www.suse.com/security/cve/CVE-2024-50147"
},
{
"category": "external",
"summary": "SUSE Bug 1233067 for CVE-2024-50147",
"url": "https://bugzilla.suse.com/1233067"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50147"
},
{
"cve": "CVE-2024-50148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bnep: fix wild-memory-access in proto_unregister\n\nThere\u0027s issue as follows:\n KASAN: maybe wild-memory-access in range [0xdead...108-0xdead...10f]\n CPU: 3 UID: 0 PID: 2805 Comm: rmmod Tainted: G W\n RIP: 0010:proto_unregister+0xee/0x400\n Call Trace:\n \u003cTASK\u003e\n __do_sys_delete_module+0x318/0x580\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAs bnep_init() ignore bnep_sock_init()\u0027s return value, and bnep_sock_init()\nwill cleanup all resource. Then when remove bnep module will call\nbnep_sock_cleanup() to cleanup sock\u0027s resource.\nTo solve above issue just return bnep_sock_init()\u0027s return value in\nbnep_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50148",
"url": "https://www.suse.com/security/cve/CVE-2024-50148"
},
{
"category": "external",
"summary": "SUSE Bug 1233063 for CVE-2024-50148",
"url": "https://bugzilla.suse.com/1233063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50148"
},
{
"cve": "CVE-2024-50150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmode should keep reference to parent\n\nThe altmode device release refers to its parent device, but without keeping\na reference to it.\n\nWhen registering the altmode, get a reference to the parent and put it in\nthe release function.\n\nBefore this fix, when using CONFIG_DEBUG_KOBJECT_RELEASE, we see issues\nlike this:\n\n[ 43.572860] kobject: \u0027port0.0\u0027 (ffff8880057ba008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.573532] kobject: \u0027port0.1\u0027 (ffff8880057bd008): kobject_release, parent 0000000000000000 (delayed 1000)\n[ 43.574407] kobject: \u0027port0\u0027 (ffff8880057b9008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.575059] kobject: \u0027port1.0\u0027 (ffff8880057ca008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.575908] kobject: \u0027port1.1\u0027 (ffff8880057c9008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.576908] kobject: \u0027typec\u0027 (ffff8880062dbc00): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.577769] kobject: \u0027port1\u0027 (ffff8880057bf008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 46.612867] ==================================================================\n[ 46.613402] BUG: KASAN: slab-use-after-free in typec_altmode_release+0x38/0x129\n[ 46.614003] Read of size 8 at addr ffff8880057b9118 by task kworker/2:1/48\n[ 46.614538]\n[ 46.614668] CPU: 2 UID: 0 PID: 48 Comm: kworker/2:1 Not tainted 6.12.0-rc1-00138-gedbae730ad31 #535\n[ 46.615391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 46.616042] Workqueue: events kobject_delayed_cleanup\n[ 46.616446] Call Trace:\n[ 46.616648] \u003cTASK\u003e\n[ 46.616820] dump_stack_lvl+0x5b/0x7c\n[ 46.617112] ? typec_altmode_release+0x38/0x129\n[ 46.617470] print_report+0x14c/0x49e\n[ 46.617769] ? rcu_read_unlock_sched+0x56/0x69\n[ 46.618117] ? __virt_addr_valid+0x19a/0x1ab\n[ 46.618456] ? kmem_cache_debug_flags+0xc/0x1d\n[ 46.618807] ? typec_altmode_release+0x38/0x129\n[ 46.619161] kasan_report+0x8d/0xb4\n[ 46.619447] ? typec_altmode_release+0x38/0x129\n[ 46.619809] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620185] typec_altmode_release+0x38/0x129\n[ 46.620537] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620907] device_release+0xaf/0xf2\n[ 46.621206] kobject_delayed_cleanup+0x13b/0x17a\n[ 46.621584] process_scheduled_works+0x4f6/0x85f\n[ 46.621955] ? __pfx_process_scheduled_works+0x10/0x10\n[ 46.622353] ? hlock_class+0x31/0x9a\n[ 46.622647] ? lock_acquired+0x361/0x3c3\n[ 46.622956] ? move_linked_works+0x46/0x7d\n[ 46.623277] worker_thread+0x1ce/0x291\n[ 46.623582] ? __kthread_parkme+0xc8/0xdf\n[ 46.623900] ? __pfx_worker_thread+0x10/0x10\n[ 46.624236] kthread+0x17e/0x190\n[ 46.624501] ? kthread+0xfb/0x190\n[ 46.624756] ? __pfx_kthread+0x10/0x10\n[ 46.625015] ret_from_fork+0x20/0x40\n[ 46.625268] ? __pfx_kthread+0x10/0x10\n[ 46.625532] ret_from_fork_asm+0x1a/0x30\n[ 46.625805] \u003c/TASK\u003e\n[ 46.625953]\n[ 46.626056] Allocated by task 678:\n[ 46.626287] kasan_save_stack+0x24/0x44\n[ 46.626555] kasan_save_track+0x14/0x2d\n[ 46.626811] __kasan_kmalloc+0x3f/0x4d\n[ 46.627049] __kmalloc_noprof+0x1bf/0x1f0\n[ 46.627362] typec_register_port+0x23/0x491\n[ 46.627698] cros_typec_probe+0x634/0xbb6\n[ 46.628026] platform_probe+0x47/0x8c\n[ 46.628311] really_probe+0x20a/0x47d\n[ 46.628605] device_driver_attach+0x39/0x72\n[ 46.628940] bind_store+0x87/0xd7\n[ 46.629213] kernfs_fop_write_iter+0x1aa/0x218\n[ 46.629574] vfs_write+0x1d6/0x29b\n[ 46.629856] ksys_write+0xcd/0x13b\n[ 46.630128] do_syscall_64+0xd4/0x139\n[ 46.630420] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 46.630820]\n[ 46.630946] Freed by task 48:\n[ 46.631182] kasan_save_stack+0x24/0x44\n[ 46.631493] kasan_save_track+0x14/0x2d\n[ 46.631799] kasan_save_free_info+0x3f/0x4d\n[ 46.632144] __kasan_slab_free+0x37/0x45\n[ 46.632474]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50150",
"url": "https://www.suse.com/security/cve/CVE-2024-50150"
},
{
"category": "external",
"summary": "SUSE Bug 1233051 for CVE-2024-50150",
"url": "https://bugzilla.suse.com/1233051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50150"
},
{
"cve": "CVE-2024-50153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix null-ptr-deref in target_alloc_device()\n\nThere is a null-ptr-deref issue reported by KASAN:\n\nBUG: KASAN: null-ptr-deref in target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n...\n kasan_report+0xb9/0xf0\n target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n core_dev_setup_virtual_lun0+0xef/0x1f0 [target_core_mod]\n target_core_init_configfs+0x205/0x420 [target_core_mod]\n do_one_initcall+0xdd/0x4e0\n...\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nIn target_alloc_device(), if allocing memory for dev queues fails, then\ndev will be freed by dev-\u003etransport-\u003efree_device(), but dev-\u003etransport\nis not initialized at that time, which will lead to a null pointer\nreference problem.\n\nFixing this bug by freeing dev with hba-\u003ebackend-\u003eops-\u003efree_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50153",
"url": "https://www.suse.com/security/cve/CVE-2024-50153"
},
{
"category": "external",
"summary": "SUSE Bug 1233061 for CVE-2024-50153",
"url": "https://bugzilla.suse.com/1233061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50153"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: use cond_resched() in nsim_dev_trap_report_work()\n\nI am still seeing many syzbot reports hinting that syzbot\nmight fool nsim_dev_trap_report_work() with hundreds of ports [1]\n\nLets use cond_resched(), and system_unbound_wq\ninstead of implicit system_wq.\n\n[1]\nINFO: task syz-executor:20633 blocked for more than 143 seconds.\n Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\ntask:syz-executor state:D stack:25856 pid:20633 tgid:20633 ppid:1 flags:0x00004006\n...\nNMI backtrace for cpu 1\nCPU: 1 UID: 0 PID: 16760 Comm: kworker/1:0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events nsim_dev_trap_report_work\n RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210\nCode: 89 fb e8 23 00 00 00 48 8b 3d 04 fb 9c 0c 48 89 de 5b e9 c3 c7 5d 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 \u003cf3\u003e 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d7 03 00 65 8b 15 60 f0\nRSP: 0018:ffffc90000a187e8 EFLAGS: 00000246\nRAX: 0000000000000100 RBX: ffffc90000a188e0 RCX: ffff888027d3bc00\nRDX: ffff888027d3bc00 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffff88804a2e6000 R08: ffffffff8a4bc495 R09: ffffffff89da3577\nR10: 0000000000000004 R11: ffffffff8a4bc2b0 R12: dffffc0000000000\nR13: ffff88806573b503 R14: dffffc0000000000 R15: ffff8880663cca00\nFS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fc90a747f98 CR3: 000000000e734000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 000000000000002b DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline]\n nsim_dev_trap_report_work+0x75d/0xaa0 drivers/net/netdevsim/dev.c:850\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50155",
"url": "https://www.suse.com/security/cve/CVE-2024-50155"
},
{
"category": "external",
"summary": "SUSE Bug 1233035 for CVE-2024-50155",
"url": "https://bugzilla.suse.com/1233035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50155"
},
{
"cve": "CVE-2024-50156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Avoid NULL dereference in msm_disp_state_print_regs()\n\nIf the allocation in msm_disp_state_dump_regs() failed then\n`block-\u003estate` can be NULL. The msm_disp_state_print_regs() function\n_does_ have code to try to handle it with:\n\n if (*reg)\n dump_addr = *reg;\n\n...but since \"dump_addr\" is initialized to NULL the above is actually\na noop. The code then goes on to dereference `dump_addr`.\n\nMake the function print \"Registers not stored\" when it sees a NULL to\nsolve this. Since we\u0027re touching the code, fix\nmsm_disp_state_print_regs() not to pointlessly take a double-pointer\nand properly mark the pointer as `const`.\n\nPatchwork: https://patchwork.freedesktop.org/patch/619657/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50156",
"url": "https://www.suse.com/security/cve/CVE-2024-50156"
},
{
"category": "external",
"summary": "SUSE Bug 1233073 for CVE-2024-50156",
"url": "https://bugzilla.suse.com/1233073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50156"
},
{
"cve": "CVE-2024-50160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda/cs8409: Fix possible NULL dereference\n\nIf snd_hda_gen_add_kctl fails to allocate memory and returns NULL, then\nNULL pointer dereference will occur in the next line.\n\nSince dolphin_fixups function is a hda_fixup function which is not supposed\nto return any errors, add simple check before dereference, ignore the fail.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50160",
"url": "https://www.suse.com/security/cve/CVE-2024-50160"
},
{
"category": "external",
"summary": "SUSE Bug 1233074 for CVE-2024-50160",
"url": "https://bugzilla.suse.com/1233074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50160"
},
{
"cve": "CVE-2024-50167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: fix potential memory leak in be_xmit()\n\nThe be_xmit() returns NETDEV_TX_OK without freeing skb\nin case of be_xmit_enqueue() fails, add dev_kfree_skb_any() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50167",
"url": "https://www.suse.com/security/cve/CVE-2024-50167"
},
{
"category": "external",
"summary": "SUSE Bug 1233049 for CVE-2024-50167",
"url": "https://bugzilla.suse.com/1233049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50167"
},
{
"cve": "CVE-2024-50171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: systemport: fix potential memory leak in bcm_sysport_xmit()\n\nThe bcm_sysport_xmit() returns NETDEV_TX_OK without freeing skb\nin case of dma_map_single() fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50171",
"url": "https://www.suse.com/security/cve/CVE-2024-50171"
},
{
"category": "external",
"summary": "SUSE Bug 1233057 for CVE-2024-50171",
"url": "https://bugzilla.suse.com/1233057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50171"
},
{
"cve": "CVE-2024-50179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: remove the incorrect Fw reference check when dirtying pages\n\nWhen doing the direct-io reads it will also try to mark pages dirty,\nbut for the read path it won\u0027t hold the Fw caps and there is case\nwill it get the Fw reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50179",
"url": "https://www.suse.com/security/cve/CVE-2024-50179"
},
{
"category": "external",
"summary": "SUSE Bug 1233123 for CVE-2024-50179",
"url": "https://bugzilla.suse.com/1233123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50179"
},
{
"cve": "CVE-2024-50180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sisfb: Fix strbuf array overflow\n\nThe values of the variables xres and yres are placed in strbuf.\nThese variables are obtained from strbuf1.\nThe strbuf1 array contains digit characters\nand a space if the array contains non-digit characters.\nThen, when executing sprintf(strbuf, \"%ux%ux8\", xres, yres);\nmore than 16 bytes will be written to strbuf.\nIt is suggested to increase the size of the strbuf array to 24.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50180",
"url": "https://www.suse.com/security/cve/CVE-2024-50180"
},
{
"category": "external",
"summary": "SUSE Bug 1233125 for CVE-2024-50180",
"url": "https://bugzilla.suse.com/1233125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50180"
},
{
"cve": "CVE-2024-50182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecretmem: disable memfd_secret() if arch cannot set direct map\n\nReturn -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This\nis the case for example on some arm64 configurations, where marking 4k\nPTEs in the direct map not present can only be done if the direct map is\nset up at 4k granularity in the first place (as ARM\u0027s break-before-make\nsemantics do not easily allow breaking apart large/gigantic pages).\n\nMore precisely, on arm64 systems with !can_set_direct_map(),\nset_direct_map_invalid_noflush() is a no-op, however it returns success\n(0) instead of an error. This means that memfd_secret will seemingly\n\"work\" (e.g. syscall succeeds, you can mmap the fd and fault in pages),\nbut it does not actually achieve its goal of removing its memory from the\ndirect map.\n\nNote that with this patch, memfd_secret() will start erroring on systems\nwhere can_set_direct_map() returns false (arm64 with\nCONFIG_RODATA_FULL_DEFAULT_ENABLED=n, CONFIG_DEBUG_PAGEALLOC=n and\nCONFIG_KFENCE=n), but that still seems better than the current silent\nfailure. Since CONFIG_RODATA_FULL_DEFAULT_ENABLED defaults to \u0027y\u0027, most\narm64 systems actually have a working memfd_secret() and aren\u0027t be\naffected.\n\nFrom going through the iterations of the original memfd_secret patch\nseries, it seems that disabling the syscall in these scenarios was the\nintended behavior [1] (preferred over having\nset_direct_map_invalid_noflush return an error as that would result in\nSIGBUSes at page-fault time), however the check for it got dropped between\nv16 [2] and v17 [3], when secretmem moved away from CMA allocations.\n\n[1]: https://lore.kernel.org/lkml/20201124164930.GK8537@kernel.org/\n[2]: https://lore.kernel.org/lkml/20210121122723.3446-11-rppt@kernel.org/#t\n[3]: https://lore.kernel.org/lkml/20201125092208.12544-10-rppt@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50182",
"url": "https://www.suse.com/security/cve/CVE-2024-50182"
},
{
"category": "external",
"summary": "SUSE Bug 1233129 for CVE-2024-50182",
"url": "https://bugzilla.suse.com/1233129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50182"
},
{
"cve": "CVE-2024-50183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance\n\nDeleting an NPIV instance requires all fabric ndlps to be released before\nan NPIV\u0027s resources can be torn down. Failure to release fabric ndlps\nbeforehand opens kref imbalance race conditions. Fix by forcing the DA_ID\nto complete synchronously with usage of wait_queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50183",
"url": "https://www.suse.com/security/cve/CVE-2024-50183"
},
{
"category": "external",
"summary": "SUSE Bug 1233130 for CVE-2024-50183",
"url": "https://bugzilla.suse.com/1233130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50183"
},
{
"cve": "CVE-2024-50184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: Check device status before requesting flush\n\nIf a pmem device is in a bad status, the driver side could wait for\nhost ack forever in virtio_pmem_flush(), causing the system to hang.\n\nSo add a status check in the beginning of virtio_pmem_flush() to return\nearly if the device is not activated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50184",
"url": "https://www.suse.com/security/cve/CVE-2024-50184"
},
{
"category": "external",
"summary": "SUSE Bug 1233135 for CVE-2024-50184",
"url": "https://bugzilla.suse.com/1233135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50184"
},
{
"cve": "CVE-2024-50186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50186"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: explicitly clear the sk pointer, when pf-\u003ecreate fails\n\nWe have recently noticed the exact same KASAN splat as in commit\n6cd4a78d962b (\"net: do not leave a dangling sk pointer, when socket\ncreation fails\"). The problem is that commit did not fully address the\nproblem, as some pf-\u003ecreate implementations do not use sk_common_release\nin their error paths.\n\nFor example, we can use the same reproducer as in the above commit, but\nchanging ping to arping. arping uses AF_PACKET socket and if packet_create\nfails, it will just sk_free the allocated sk object.\n\nWhile we could chase all the pf-\u003ecreate implementations and make sure they\nNULL the freed sk object on error from the socket, we can\u0027t guarantee\nfuture protocols will not make the same mistake.\n\nSo it is easier to just explicitly NULL the sk pointer upon return from\npf-\u003ecreate in __sock_create. We do know that pf-\u003ecreate always releases the\nallocated sk object on error, so if the pointer is not NULL, it is\ndefinitely dangling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50186",
"url": "https://www.suse.com/security/cve/CVE-2024-50186"
},
{
"category": "external",
"summary": "SUSE Bug 1233110 for CVE-2024-50186",
"url": "https://bugzilla.suse.com/1233110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50186"
},
{
"cve": "CVE-2024-50187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: Stop the active perfmon before being destroyed\n\nUpon closing the file descriptor, the active performance monitor is not\nstopped. Although all perfmons are destroyed in `vc4_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`vc4-\u003eactive_perfmon`) is still\nretained.\n\nIf we open a new file descriptor and submit a few jobs with performance\nmonitors, the driver will attempt to stop the active performance monitor\nusing the stale pointer in `vc4-\u003eactive_perfmon`. However, this pointer\nis no longer valid because the previous process has already terminated,\nand all performance monitors associated with it have been destroyed and\nfreed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50187",
"url": "https://www.suse.com/security/cve/CVE-2024-50187"
},
{
"category": "external",
"summary": "SUSE Bug 1233108 for CVE-2024-50187",
"url": "https://bugzilla.suse.com/1233108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50187"
},
{
"cve": "CVE-2024-50188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: dp83869: fix memory corruption when enabling fiber\n\nWhen configuring the fiber port, the DP83869 PHY driver incorrectly\ncalls linkmode_set_bit() with a bit mask (1 \u003c\u003c 10) rather than a bit\nnumber (10). This corrupts some other memory location -- in case of\narm64 the priv pointer in the same structure.\n\nSince the advertising flags are updated from supported at the end of the\nfunction the incorrect line isn\u0027t needed at all and can be removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50188",
"url": "https://www.suse.com/security/cve/CVE-2024-50188"
},
{
"category": "external",
"summary": "SUSE Bug 1233107 for CVE-2024-50188",
"url": "https://bugzilla.suse.com/1233107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50188"
},
{
"cve": "CVE-2024-50189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: Switch to device-managed dmam_alloc_coherent()\n\nUsing the device-managed version allows to simplify clean-up in probe()\nerror path.\n\nAdditionally, this device-managed ensures proper cleanup, which helps to\nresolve memory errors, page faults, btrfs going read-only, and btrfs\ndisk corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50189",
"url": "https://www.suse.com/security/cve/CVE-2024-50189"
},
{
"category": "external",
"summary": "SUSE Bug 1233105 for CVE-2024-50189",
"url": "https://bugzilla.suse.com/1233105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50189"
},
{
"cve": "CVE-2024-50192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v4: Don\u0027t allow a VMOVP on a dying VPE\n\nKunkun Jiang reported that there is a small window of opportunity for\nuserspace to force a change of affinity for a VPE while the VPE has already\nbeen unmapped, but the corresponding doorbell interrupt still visible in\n/proc/irq/.\n\nPlug the race by checking the value of vmapp_count, which tracks whether\nthe VPE is mapped ot not, and returning an error in this case.\n\nThis involves making vmapp_count common to both GICv4.1 and its v4.0\nancestor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50192",
"url": "https://www.suse.com/security/cve/CVE-2024-50192"
},
{
"category": "external",
"summary": "SUSE Bug 1233106 for CVE-2024-50192",
"url": "https://bugzilla.suse.com/1233106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50192"
},
{
"cve": "CVE-2024-50194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Fix uprobes for big-endian kernels\n\nThe arm64 uprobes code is broken for big-endian kernels as it doesn\u0027t\nconvert the in-memory instruction encoding (which is always\nlittle-endian) into the kernel\u0027s native endianness before analyzing and\nsimulating instructions. This may result in a few distinct problems:\n\n* The kernel may may erroneously reject probing an instruction which can\n safely be probed.\n\n* The kernel may erroneously erroneously permit stepping an\n instruction out-of-line when that instruction cannot be stepped\n out-of-line safely.\n\n* The kernel may erroneously simulate instruction incorrectly dur to\n interpretting the byte-swapped encoding.\n\nThe endianness mismatch isn\u0027t caught by the compiler or sparse because:\n\n* The arch_uprobe::{insn,ixol} fields are encoded as arrays of u8, so\n the compiler and sparse have no idea these contain a little-endian\n 32-bit value. The core uprobes code populates these with a memcpy()\n which similarly does not handle endianness.\n\n* While the uprobe_opcode_t type is an alias for __le32, both\n arch_uprobe_analyze_insn() and arch_uprobe_skip_sstep() cast from u8[]\n to the similarly-named probe_opcode_t, which is an alias for u32.\n Hence there is no endianness conversion warning.\n\nFix this by changing the arch_uprobe::{insn,ixol} fields to __le32 and\nadding the appropriate __le32_to_cpu() conversions prior to consuming\nthe instruction encoding. The core uprobes copies these fields as opaque\nranges of bytes, and so is unaffected by this change.\n\nAt the same time, remove MAX_UINSN_BYTES and consistently use\nAARCH64_INSN_SIZE for clarity.\n\nTested with the following:\n\n| #include \u003cstdio.h\u003e\n| #include \u003cstdbool.h\u003e\n|\n| #define noinline __attribute__((noinline))\n|\n| static noinline void *adrp_self(void)\n| {\n| void *addr;\n|\n| asm volatile(\n| \" adrp %x0, adrp_self\\n\"\n| \" add %x0, %x0, :lo12:adrp_self\\n\"\n| : \"=r\" (addr));\n| }\n|\n|\n| int main(int argc, char *argv)\n| {\n| void *ptr = adrp_self();\n| bool equal = (ptr == adrp_self);\n|\n| printf(\"adrp_self =\u003e %p\\n\"\n| \"adrp_self() =\u003e %p\\n\"\n| \"%s\\n\",\n| adrp_self, ptr, equal ? \"EQUAL\" : \"NOT EQUAL\");\n|\n| return 0;\n| }\n\n.... where the adrp_self() function was compiled to:\n\n| 00000000004007e0 \u003cadrp_self\u003e:\n| 4007e0: 90000000 adrp x0, 400000 \u003c__ehdr_start\u003e\n| 4007e4: 911f8000 add x0, x0, #0x7e0\n| 4007e8: d65f03c0 ret\n\nBefore this patch, the ADRP is not recognized, and is assumed to be\nsteppable, resulting in corruption of the result:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0xffffffffff7e0\n| NOT EQUAL\n\nAfter this patch, the ADRP is correctly recognized and simulated:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| #\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50194",
"url": "https://www.suse.com/security/cve/CVE-2024-50194"
},
{
"category": "external",
"summary": "SUSE Bug 1233111 for CVE-2024-50194",
"url": "https://bugzilla.suse.com/1233111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50194"
},
{
"cve": "CVE-2024-50195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: Fix missing timespec64 check in pc_clock_settime()\n\nAs Andrew pointed out, it will make sense that the PTP core\nchecked timespec64 struct\u0027s tv_sec and tv_nsec range before calling\nptp-\u003einfo-\u003esettime64().\n\nAs the man manual of clock_settime() said, if tp.tv_sec is negative or\ntp.tv_nsec is outside the range [0..999,999,999], it should return EINVAL,\nwhich include dynamic clocks which handles PTP clock, and the condition is\nconsistent with timespec64_valid(). As Thomas suggested, timespec64_valid()\nonly check the timespec is valid, but not ensure that the time is\nin a valid range, so check it ahead using timespec64_valid_strict()\nin pc_clock_settime() and return -EINVAL if not valid.\n\nThere are some drivers that use tp-\u003etv_sec and tp-\u003etv_nsec directly to\nwrite registers without validity checks and assume that the higher layer\nhas checked it, which is dangerous and will benefit from this, such as\nhclge_ptp_settime(), igb_ptp_settime_i210(), _rcar_gen4_ptp_settime(),\nand some drivers can remove the checks of itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50195",
"url": "https://www.suse.com/security/cve/CVE-2024-50195"
},
{
"category": "external",
"summary": "SUSE Bug 1233103 for CVE-2024-50195",
"url": "https://bugzilla.suse.com/1233103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50195"
},
{
"cve": "CVE-2024-50196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: ocelot: fix system hang on level based interrupts\n\nThe current implementation only calls chained_irq_enter() and\nchained_irq_exit() if it detects pending interrupts.\n\n```\nfor (i = 0; i \u003c info-\u003estride; i++) {\n\turegmap_read(info-\u003emap, id_reg + 4 * i, \u0026reg);\n\tif (!reg)\n\t\tcontinue;\n\n\tchained_irq_enter(parent_chip, desc);\n```\n\nHowever, in case of GPIO pin configured in level mode and the parent\ncontroller configured in edge mode, GPIO interrupt might be lowered by the\nhardware. In the result, if the interrupt is short enough, the parent\ninterrupt is still pending while the GPIO interrupt is cleared;\nchained_irq_enter() never gets called and the system hangs trying to\nservice the parent interrupt.\n\nMoving chained_irq_enter() and chained_irq_exit() outside the for loop\nensures that they are called even when GPIO interrupt is lowered by the\nhardware.\n\nThe similar code with chained_irq_enter() / chained_irq_exit() functions\nwrapping interrupt checking loop may be found in many other drivers:\n```\ngrep -r -A 10 chained_irq_enter drivers/pinctrl\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50196",
"url": "https://www.suse.com/security/cve/CVE-2024-50196"
},
{
"category": "external",
"summary": "SUSE Bug 1233113 for CVE-2024-50196",
"url": "https://bugzilla.suse.com/1233113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50196"
},
{
"cve": "CVE-2024-50198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: veml6030: fix IIO device retrieval from embedded device\n\nThe dev pointer that is received as an argument in the\nin_illuminance_period_available_show function references the device\nembedded in the IIO device, not in the i2c client.\n\ndev_to_iio_dev() must be used to accessthe right data. The current\nimplementation leads to a segmentation fault on every attempt to read\nthe attribute because indio_dev gets a NULL assignment.\n\nThis bug has been present since the first appearance of the driver,\napparently since the last version (V6) before getting applied. A\nconstant attribute was used until then, and the last modifications might\nhave not been tested again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50198",
"url": "https://www.suse.com/security/cve/CVE-2024-50198"
},
{
"category": "external",
"summary": "SUSE Bug 1233100 for CVE-2024-50198",
"url": "https://bugzilla.suse.com/1233100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50198"
},
{
"cve": "CVE-2024-50201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Fix encoder-\u003epossible_clones\n\nInclude the encoder itself in its possible_clones bitmask.\nIn the past nothing validated that drivers were populating\npossible_clones correctly, but that changed in commit\n74d2aacbe840 (\"drm: Validate encoder-\u003epossible_clones\").\nLooks like radeon never got the memo and is still not\nfollowing the rules 100% correctly.\n\nThis results in some warnings during driver initialization:\nBogus possible_clones: [ENCODER:46:TV-46] possible_clones=0x4 (full encoder mask=0x7)\nWARNING: CPU: 0 PID: 170 at drivers/gpu/drm/drm_mode_config.c:615 drm_mode_config_validate+0x113/0x39c\n...\n\n(cherry picked from commit 3b6e7d40649c0d75572039aff9d0911864c689db)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50201",
"url": "https://www.suse.com/security/cve/CVE-2024-50201"
},
{
"category": "external",
"summary": "SUSE Bug 1233104 for CVE-2024-50201",
"url": "https://bugzilla.suse.com/1233104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50201"
},
{
"cve": "CVE-2024-50205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50205"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()\n\nThe step variable is initialized to zero. It is changed in the loop,\nbut if it\u0027s not changed it will remain zero. Add a variable check\nbefore the division.\n\nThe observed behavior was introduced by commit 826b5de90c0b\n(\"ALSA: firewire-lib: fix insufficient PCM rule for period/buffer size\"),\nand it is difficult to show that any of the interval parameters will\nsatisfy the snd_interval_test() condition with data from the\namdtp_rate_table[] table.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50205",
"url": "https://www.suse.com/security/cve/CVE-2024-50205"
},
{
"category": "external",
"summary": "SUSE Bug 1233293 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "external",
"summary": "SUSE Bug 1233294 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50205"
},
{
"cve": "CVE-2024-50208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages\n\nAvoid memory corruption while setting up Level-2 PBL pages for the non MR\nresources when num_pages \u003e 256K.\n\nThere will be a single PDE page address (contiguous pages in the case of \u003e\nPAGE_SIZE), but, current logic assumes multiple pages, leading to invalid\nmemory access after 256K PBL entries in the PDE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50208",
"url": "https://www.suse.com/security/cve/CVE-2024-50208"
},
{
"category": "external",
"summary": "SUSE Bug 1233117 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "external",
"summary": "SUSE Bug 1233118 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233118"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50208"
},
{
"cve": "CVE-2024-50209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Add a check for memory allocation\n\n__alloc_pbl() can return error when memory allocation fails.\nDriver is not checking the status on one of the instances.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50209",
"url": "https://www.suse.com/security/cve/CVE-2024-50209"
},
{
"category": "external",
"summary": "SUSE Bug 1233114 for CVE-2024-50209",
"url": "https://bugzilla.suse.com/1233114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50209"
},
{
"cve": "CVE-2024-50215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-auth: assign dh_key to NULL after kfree_sensitive\n\nctrl-\u003edh_key might be used across multiple calls to nvmet_setup_dhgroup()\nfor the same controller. So it\u0027s better to nullify it after release on\nerror path in order to avoid double free later in nvmet_destroy_auth().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50215",
"url": "https://www.suse.com/security/cve/CVE-2024-50215"
},
{
"category": "external",
"summary": "SUSE Bug 1233189 for CVE-2024-50215",
"url": "https://bugzilla.suse.com/1233189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50215"
},
{
"cve": "CVE-2024-50218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: pass u64 to ocfs2_truncate_inline maybe overflow\n\nSyzbot reported a kernel BUG in ocfs2_truncate_inline. There are two\nreasons for this: first, the parameter value passed is greater than\nocfs2_max_inline_data_with_xattr, second, the start and end parameters of\nocfs2_truncate_inline are \"unsigned int\".\n\nSo, we need to add a sanity check for byte_start and byte_len right before\nocfs2_truncate_inline() in ocfs2_remove_inode_range(), if they are greater\nthan ocfs2_max_inline_data_with_xattr return -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50218",
"url": "https://www.suse.com/security/cve/CVE-2024-50218"
},
{
"category": "external",
"summary": "SUSE Bug 1233191 for CVE-2024-50218",
"url": "https://bugzilla.suse.com/1233191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50218"
},
{
"cve": "CVE-2024-50229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential deadlock with newly created symlinks\n\nSyzbot reported that page_symlink(), called by nilfs_symlink(), triggers\nmemory reclamation involving the filesystem layer, which can result in\ncircular lock dependencies among the reader/writer semaphore\nnilfs-\u003ens_segctor_sem, s_writers percpu_rwsem (intwrite) and the\nfs_reclaim pseudo lock.\n\nThis is because after commit 21fc61c73c39 (\"don\u0027t put symlink bodies in\npagecache into highmem\"), the gfp flags of the page cache for symbolic\nlinks are overwritten to GFP_KERNEL via inode_nohighmem().\n\nThis is not a problem for symlinks read from the backing device, because\nthe __GFP_FS flag is dropped after inode_nohighmem() is called. However,\nwhen a new symlink is created with nilfs_symlink(), the gfp flags remain\noverwritten to GFP_KERNEL. Then, memory allocation called from\npage_symlink() etc. triggers memory reclamation including the FS layer,\nwhich may call nilfs_evict_inode() or nilfs_dirty_inode(). And these can\ncause a deadlock if they are called while nilfs-\u003ens_segctor_sem is held:\n\nFix this issue by dropping the __GFP_FS flag from the page cache GFP flags\nof newly created symlinks in the same way that nilfs_new_inode() and\n__nilfs_read_inode() do, as a workaround until we adopt nofs allocation\nscope consistently or improve the locking constraints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50229",
"url": "https://www.suse.com/security/cve/CVE-2024-50229"
},
{
"category": "external",
"summary": "SUSE Bug 1233205 for CVE-2024-50229",
"url": "https://bugzilla.suse.com/1233205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50229"
},
{
"cve": "CVE-2024-50230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of checked flag\n\nSyzbot reported that in directory operations after nilfs2 detects\nfilesystem corruption and degrades to read-only,\n__block_write_begin_int(), which is called to prepare block writes, may\nfail the BUG_ON check for accesses exceeding the folio/page size,\ntriggering a kernel bug.\n\nThis was found to be because the \"checked\" flag of a page/folio was not\ncleared when it was discarded by nilfs2\u0027s own routine, which causes the\nsanity check of directory entries to be skipped when the directory\npage/folio is reloaded. So, fix that.\n\nThis was necessary when the use of nilfs2\u0027s own page discard routine was\napplied to more than just metadata files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50230",
"url": "https://www.suse.com/security/cve/CVE-2024-50230"
},
{
"category": "external",
"summary": "SUSE Bug 1233206 for CVE-2024-50230",
"url": "https://bugzilla.suse.com/1233206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50230"
},
{
"cve": "CVE-2024-50232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()\n\nIn the ad7124_write_raw() function, parameter val can potentially\nbe zero. This may lead to a division by zero when DIV_ROUND_CLOSEST()\nis called within ad7124_set_channel_odr(). The ad7124_write_raw()\nfunction is invoked through the sequence: iio_write_channel_raw() -\u003e\niio_write_channel_attribute() -\u003e iio_channel_write(), with no checks\nin place to ensure val is non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50232",
"url": "https://www.suse.com/security/cve/CVE-2024-50232"
},
{
"category": "external",
"summary": "SUSE Bug 1233209 for CVE-2024-50232",
"url": "https://bugzilla.suse.com/1233209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50232"
},
{
"cve": "CVE-2024-50233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()\n\nIn the ad9832_write_frequency() function, clk_get_rate() might return 0.\nThis can lead to a division by zero when calling ad9832_calc_freqreg().\nThe check if (fout \u003e (clk_get_rate(st-\u003emclk) / 2)) does not protect\nagainst the case when fout is 0. The ad9832_write_frequency() function\nis called from ad9832_write(), and fout is derived from a text buffer,\nwhich can contain any value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50233",
"url": "https://www.suse.com/security/cve/CVE-2024-50233"
},
{
"category": "external",
"summary": "SUSE Bug 1233210 for CVE-2024-50233",
"url": "https://bugzilla.suse.com/1233210"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50233"
},
{
"cve": "CVE-2024-50234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlegacy: Clear stale interrupts before resuming device\n\niwl4965 fails upon resume from hibernation on my laptop. The reason\nseems to be a stale interrupt which isn\u0027t being cleared out before\ninterrupts are enabled. We end up with a race beween the resume\ntrying to bring things back up, and the restart work (queued form\nthe interrupt handler) trying to bring things down. Eventually\nthe whole thing blows up.\n\nFix the problem by clearing out any stale interrupts before\ninterrupts get enabled during resume.\n\nHere\u0027s a debug log of the indicent:\n[ 12.042589] ieee80211 phy0: il_isr ISR inta 0x00000080, enabled 0xaa00008b, fh 0x00000000\n[ 12.042625] ieee80211 phy0: il4965_irq_tasklet inta 0x00000080, enabled 0x00000000, fh 0x00000000\n[ 12.042651] iwl4965 0000:10:00.0: RF_KILL bit toggled to enable radio.\n[ 12.042653] iwl4965 0000:10:00.0: On demand firmware reload\n[ 12.042690] ieee80211 phy0: il4965_irq_tasklet End inta 0x00000000, enabled 0xaa00008b, fh 0x00000000, flags 0x00000282\n[ 12.052207] ieee80211 phy0: il4965_mac_start enter\n[ 12.052212] ieee80211 phy0: il_prep_station Add STA to driver ID 31: ff:ff:ff:ff:ff:ff\n[ 12.052244] ieee80211 phy0: il4965_set_hw_ready hardware ready\n[ 12.052324] ieee80211 phy0: il_apm_init Init card\u0027s basic functions\n[ 12.052348] ieee80211 phy0: il_apm_init L1 Enabled; Disabling L0S\n[ 12.055727] ieee80211 phy0: il4965_load_bsm Begin load bsm\n[ 12.056140] ieee80211 phy0: il4965_verify_bsm Begin verify bsm\n[ 12.058642] ieee80211 phy0: il4965_verify_bsm BSM bootstrap uCode image OK\n[ 12.058721] ieee80211 phy0: il4965_load_bsm BSM write complete, poll 1 iterations\n[ 12.058734] ieee80211 phy0: __il4965_up iwl4965 is coming up\n[ 12.058737] ieee80211 phy0: il4965_mac_start Start UP work done.\n[ 12.058757] ieee80211 phy0: __il4965_down iwl4965 is going down\n[ 12.058761] ieee80211 phy0: il_scan_cancel_timeout Scan cancel timeout\n[ 12.058762] ieee80211 phy0: il_do_scan_abort Not performing scan to abort\n[ 12.058765] ieee80211 phy0: il_clear_ucode_stations Clearing ucode stations in driver\n[ 12.058767] ieee80211 phy0: il_clear_ucode_stations No active stations found to be cleared\n[ 12.058819] ieee80211 phy0: _il_apm_stop Stop card, put in low power state\n[ 12.058827] ieee80211 phy0: _il_apm_stop_master stop master\n[ 12.058864] ieee80211 phy0: il4965_clear_free_frames 0 frames on pre-allocated heap on clear.\n[ 12.058869] ieee80211 phy0: Hardware restart was requested\n[ 16.132299] iwl4965 0000:10:00.0: START_ALIVE timeout after 4000ms.\n[ 16.132303] ------------[ cut here ]------------\n[ 16.132304] Hardware became unavailable upon resume. This could be a software issue prior to suspend or a hardware issue.\n[ 16.132338] WARNING: CPU: 0 PID: 181 at net/mac80211/util.c:1826 ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132390] Modules linked in: ctr ccm sch_fq_codel xt_tcpudp xt_multiport xt_state iptable_filter iptable_nat nf_nat nf_conntrack nf_defrag_ipv4 ip_tables x_tables binfmt_misc joydev mousedev btusb btrtl btintel btbcm bluetooth ecdh_generic ecc iTCO_wdt i2c_dev iwl4965 iwlegacy coretemp snd_hda_codec_analog pcspkr psmouse mac80211 snd_hda_codec_generic libarc4 sdhci_pci cqhci sha256_generic sdhci libsha256 firewire_ohci snd_hda_intel snd_intel_dspcfg mmc_core snd_hda_codec snd_hwdep firewire_core led_class iosf_mbi snd_hda_core uhci_hcd lpc_ich crc_itu_t cfg80211 ehci_pci ehci_hcd snd_pcm usbcore mfd_core rfkill snd_timer snd usb_common soundcore video parport_pc parport intel_agp wmi intel_gtt backlight e1000e agpgart evdev\n[ 16.132456] CPU: 0 UID: 0 PID: 181 Comm: kworker/u8:6 Not tainted 6.11.0-cl+ #143\n[ 16.132460] Hardware name: Hewlett-Packard HP Compaq 6910p/30BE, BIOS 68MCU Ver. F.19 07/06/2010\n[ 16.132463] Workqueue: async async_run_entry_fn\n[ 16.132469] RIP: 0010:ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132501] Code: da 02 00 0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50234",
"url": "https://www.suse.com/security/cve/CVE-2024-50234"
},
{
"category": "external",
"summary": "SUSE Bug 1233211 for CVE-2024-50234",
"url": "https://bugzilla.suse.com/1233211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50234"
},
{
"cve": "CVE-2024-50236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: Fix memory leak in management tx\n\nIn the current logic, memory is allocated for storing the MSDU context\nduring management packet TX but this memory is not being freed during\nmanagement TX completion. Similar leaks are seen in the management TX\ncleanup logic.\n\nKmemleak reports this problem as below,\n\nunreferenced object 0xffffff80b64ed250 (size 16):\n comm \"kworker/u16:7\", pid 148, jiffies 4294687130 (age 714.199s)\n hex dump (first 16 bytes):\n 00 2b d8 d8 80 ff ff ff c4 74 e9 fd 07 00 00 00 .+.......t......\n backtrace:\n [\u003cffffffe6e7b245dc\u003e] __kmem_cache_alloc_node+0x1e4/0x2d8\n [\u003cffffffe6e7adde88\u003e] kmalloc_trace+0x48/0x110\n [\u003cffffffe6bbd765fc\u003e] ath10k_wmi_tlv_op_gen_mgmt_tx_send+0xd4/0x1d8 [ath10k_core]\n [\u003cffffffe6bbd3eed4\u003e] ath10k_mgmt_over_wmi_tx_work+0x134/0x298 [ath10k_core]\n [\u003cffffffe6e78d5974\u003e] process_scheduled_works+0x1ac/0x400\n [\u003cffffffe6e78d60b8\u003e] worker_thread+0x208/0x328\n [\u003cffffffe6e78dc890\u003e] kthread+0x100/0x1c0\n [\u003cffffffe6e78166c0\u003e] ret_from_fork+0x10/0x20\n\nFree the memory during completion and cleanup to fix the leak.\n\nProtect the mgmt_pending_tx idr_remove() operation in\nath10k_wmi_tlv_op_cleanup_mgmt_tx_send() using ar-\u003edata_lock similar to\nother instances.\n\nTested-on: WCN3990 hw1.0 SNOC WLAN.HL.2.0-01387-QCAHLSWMTPLZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50236",
"url": "https://www.suse.com/security/cve/CVE-2024-50236"
},
{
"category": "external",
"summary": "SUSE Bug 1233212 for CVE-2024-50236",
"url": "https://bugzilla.suse.com/1233212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50236"
},
{
"cve": "CVE-2024-50237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: do not pass a stopped vif to the driver in .get_txpower\n\nAvoid potentially crashing in the driver because of uninitialized private data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50237",
"url": "https://www.suse.com/security/cve/CVE-2024-50237"
},
{
"category": "external",
"summary": "SUSE Bug 1233216 for CVE-2024-50237",
"url": "https://bugzilla.suse.com/1233216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50237"
},
{
"cve": "CVE-2024-50249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Make rmw_lock a raw_spin_lock\n\nThe following BUG was triggered:\n\n=============================\n[ BUG: Invalid wait context ]\n6.12.0-rc2-XXX #406 Not tainted\n-----------------------------\nkworker/1:1/62 is trying to lock:\nffffff8801593030 (\u0026cpc_ptr-\u003ermw_lock){+.+.}-{3:3}, at: cpc_write+0xcc/0x370\nother info that might help us debug this:\ncontext-{5:5}\n2 locks held by kworker/1:1/62:\n #0: ffffff897ef5ec98 (\u0026rq-\u003e__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x50\n #1: ffffff880154e238 (\u0026sg_policy-\u003eupdate_lock){....}-{2:2}, at: sugov_update_shared+0x3c/0x280\nstack backtrace:\nCPU: 1 UID: 0 PID: 62 Comm: kworker/1:1 Not tainted 6.12.0-rc2-g9654bd3e8806 #406\nWorkqueue: 0x0 (events)\nCall trace:\n dump_backtrace+0xa4/0x130\n show_stack+0x20/0x38\n dump_stack_lvl+0x90/0xd0\n dump_stack+0x18/0x28\n __lock_acquire+0x480/0x1ad8\n lock_acquire+0x114/0x310\n _raw_spin_lock+0x50/0x70\n cpc_write+0xcc/0x370\n cppc_set_perf+0xa0/0x3a8\n cppc_cpufreq_fast_switch+0x40/0xc0\n cpufreq_driver_fast_switch+0x4c/0x218\n sugov_update_shared+0x234/0x280\n update_load_avg+0x6ec/0x7b8\n dequeue_entities+0x108/0x830\n dequeue_task_fair+0x58/0x408\n __schedule+0x4f0/0x1070\n schedule+0x54/0x130\n worker_thread+0xc0/0x2e8\n kthread+0x130/0x148\n ret_from_fork+0x10/0x20\n\nsugov_update_shared() locks a raw_spinlock while cpc_write() locks a\nspinlock.\n\nTo have a correct wait-type order, update rmw_lock to a raw spinlock and\nensure that interrupts will be disabled on the CPU holding it.\n\n[ rjw: Changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50249",
"url": "https://www.suse.com/security/cve/CVE-2024-50249"
},
{
"category": "external",
"summary": "SUSE Bug 1233197 for CVE-2024-50249",
"url": "https://bugzilla.suse.com/1233197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50249"
},
{
"cve": "CVE-2024-50255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs\n\nFix __hci_cmd_sync_sk() to return not NULL for unknown opcodes.\n\n__hci_cmd_sync_sk() returns NULL if a command returns a status event.\nHowever, it also returns NULL where an opcode doesn\u0027t exist in the\nhci_cc table because hci_cmd_complete_evt() assumes status = skb-\u003edata[0]\nfor unknown opcodes.\nThis leads to null-ptr-deref in cmd_sync for HCI_OP_READ_LOCAL_CODECS as\nthere is no hci_cc for HCI_OP_READ_LOCAL_CODECS, which always assumes\nstatus = skb-\u003edata[0].\n\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 1 PID: 2000 Comm: kworker/u9:5 Not tainted 6.9.0-ga6bcb805883c-dirty #10\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci7 hci_power_on\nRIP: 0010:hci_read_supported_codecs+0xb9/0x870 net/bluetooth/hci_codec.c:138\nCode: 08 48 89 ef e8 b8 c1 8f fd 48 8b 75 00 e9 96 00 00 00 49 89 c6 48 ba 00 00 00 00 00 fc ff df 4c 8d 60 70 4c 89 e3 48 c1 eb 03 \u003c0f\u003e b6 04 13 84 c0 0f 85 82 06 00 00 41 83 3c 24 02 77 0a e8 bf 78\nRSP: 0018:ffff888120bafac8 EFLAGS: 00010212\nRAX: 0000000000000000 RBX: 000000000000000e RCX: ffff8881173f0040\nRDX: dffffc0000000000 RSI: ffffffffa58496c0 RDI: ffff88810b9ad1e4\nRBP: ffff88810b9ac000 R08: ffffffffa77882a7 R09: 1ffffffff4ef1054\nR10: dffffc0000000000 R11: fffffbfff4ef1055 R12: 0000000000000070\nR13: 0000000000000000 R14: 0000000000000000 R15: ffff88810b9ac000\nFS: 0000000000000000(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f6ddaa3439e CR3: 0000000139764003 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n hci_read_local_codecs_sync net/bluetooth/hci_sync.c:4546 [inline]\n hci_init_stage_sync net/bluetooth/hci_sync.c:3441 [inline]\n hci_init4_sync net/bluetooth/hci_sync.c:4706 [inline]\n hci_init_sync net/bluetooth/hci_sync.c:4742 [inline]\n hci_dev_init_sync net/bluetooth/hci_sync.c:4912 [inline]\n hci_dev_open_sync+0x19a9/0x2d30 net/bluetooth/hci_sync.c:4994\n hci_dev_do_open net/bluetooth/hci_core.c:483 [inline]\n hci_power_on+0x11e/0x560 net/bluetooth/hci_core.c:1015\n process_one_work kernel/workqueue.c:3267 [inline]\n process_scheduled_works+0x8ef/0x14f0 kernel/workqueue.c:3348\n worker_thread+0x91f/0xe50 kernel/workqueue.c:3429\n kthread+0x2cb/0x360 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50255",
"url": "https://www.suse.com/security/cve/CVE-2024-50255"
},
{
"category": "external",
"summary": "SUSE Bug 1233238 for CVE-2024-50255",
"url": "https://bugzilla.suse.com/1233238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50255"
},
{
"cve": "CVE-2024-50259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()\n\nThis was found by a static analyzer.\nWe should not forget the trailing zero after copy_from_user()\nif we will further do some string operations, sscanf() in this\ncase. Adding a trailing zero will ensure that the function\nperforms properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50259",
"url": "https://www.suse.com/security/cve/CVE-2024-50259"
},
{
"category": "external",
"summary": "SUSE Bug 1233214 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "external",
"summary": "SUSE Bug 1233215 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50259"
},
{
"cve": "CVE-2024-50261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacsec: Fix use-after-free while sending the offloading packet\n\nKASAN reports the following UAF. The metadata_dst, which is used to\nstore the SCI value for macsec offload, is already freed by\nmetadata_dst_free() in macsec_free_netdev(), while driver still use it\nfor sending the packet.\n\nTo fix this issue, dst_release() is used instead to release\nmetadata_dst. So it is not freed instantly in macsec_free_netdev() if\nstill referenced by skb.\n\n BUG: KASAN: slab-use-after-free in mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n Read of size 2 at addr ffff88813e42e038 by task kworker/7:2/714\n [...]\n Workqueue: mld mld_ifc_work\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x60\n print_report+0xc1/0x600\n kasan_report+0xab/0xe0\n mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n dev_hard_start_xmit+0x120/0x530\n sch_direct_xmit+0x149/0x11e0\n __qdisc_run+0x3ad/0x1730\n __dev_queue_xmit+0x1196/0x2ed0\n vlan_dev_hard_start_xmit+0x32e/0x510 [8021q]\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n macsec_start_xmit+0x13e9/0x2340\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n ip6_finish_output2+0x923/0x1a70\n ip6_finish_output+0x2d7/0x970\n ip6_output+0x1ce/0x3a0\n NF_HOOK.constprop.0+0x15f/0x190\n mld_sendpack+0x59a/0xbd0\n mld_ifc_work+0x48a/0xa80\n process_one_work+0x5aa/0xe50\n worker_thread+0x79c/0x1290\n kthread+0x28f/0x350\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\n Allocated by task 3922:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0x77/0x90\n __kmalloc_noprof+0x188/0x400\n metadata_dst_alloc+0x1f/0x4e0\n macsec_newlink+0x914/0x1410\n __rtnl_newlink+0xe08/0x15b0\n rtnl_newlink+0x5f/0x90\n rtnetlink_rcv_msg+0x667/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 4011:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n poison_slab_object+0x10c/0x190\n __kasan_slab_free+0x11/0x30\n kfree+0xe0/0x290\n macsec_free_netdev+0x3f/0x140\n netdev_run_todo+0x450/0xc70\n rtnetlink_rcv_msg+0x66f/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50261",
"url": "https://www.suse.com/security/cve/CVE-2024-50261"
},
{
"category": "external",
"summary": "SUSE Bug 1233253 for CVE-2024-50261",
"url": "https://bugzilla.suse.com/1233253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50261"
},
{
"cve": "CVE-2024-50264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans\n\nDuring loopback communication, a dangling pointer can be created in\nvsk-\u003etrans, potentially leading to a Use-After-Free condition. This\nissue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50264",
"url": "https://www.suse.com/security/cve/CVE-2024-50264"
},
{
"category": "external",
"summary": "SUSE Bug 1233453 for CVE-2024-50264",
"url": "https://bugzilla.suse.com/1233453"
},
{
"category": "external",
"summary": "SUSE Bug 1233712 for CVE-2024-50264",
"url": "https://bugzilla.suse.com/1233712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50264"
},
{
"cve": "CVE-2024-50265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove()\n\nSyzkaller is able to provoke null-ptr-dereference in ocfs2_xa_remove():\n\n[ 57.319872] (a.out,1161,7):ocfs2_xa_remove:2028 ERROR: status = -12\n[ 57.320420] (a.out,1161,7):ocfs2_xa_cleanup_value_truncate:1999 ERROR: Partial truncate while removing xattr overlay.upper. Leaking 1 clusters and removing the entry\n[ 57.321727] BUG: kernel NULL pointer dereference, address: 0000000000000004\n[...]\n[ 57.325727] RIP: 0010:ocfs2_xa_block_wipe_namevalue+0x2a/0xc0\n[...]\n[ 57.331328] Call Trace:\n[ 57.331477] \u003cTASK\u003e\n[...]\n[ 57.333511] ? do_user_addr_fault+0x3e5/0x740\n[ 57.333778] ? exc_page_fault+0x70/0x170\n[ 57.334016] ? asm_exc_page_fault+0x2b/0x30\n[ 57.334263] ? __pfx_ocfs2_xa_block_wipe_namevalue+0x10/0x10\n[ 57.334596] ? ocfs2_xa_block_wipe_namevalue+0x2a/0xc0\n[ 57.334913] ocfs2_xa_remove_entry+0x23/0xc0\n[ 57.335164] ocfs2_xa_set+0x704/0xcf0\n[ 57.335381] ? _raw_spin_unlock+0x1a/0x40\n[ 57.335620] ? ocfs2_inode_cache_unlock+0x16/0x20\n[ 57.335915] ? trace_preempt_on+0x1e/0x70\n[ 57.336153] ? start_this_handle+0x16c/0x500\n[ 57.336410] ? preempt_count_sub+0x50/0x80\n[ 57.336656] ? _raw_read_unlock+0x20/0x40\n[ 57.336906] ? start_this_handle+0x16c/0x500\n[ 57.337162] ocfs2_xattr_block_set+0xa6/0x1e0\n[ 57.337424] __ocfs2_xattr_set_handle+0x1fd/0x5d0\n[ 57.337706] ? ocfs2_start_trans+0x13d/0x290\n[ 57.337971] ocfs2_xattr_set+0xb13/0xfb0\n[ 57.338207] ? dput+0x46/0x1c0\n[ 57.338393] ocfs2_xattr_trusted_set+0x28/0x30\n[ 57.338665] ? ocfs2_xattr_trusted_set+0x28/0x30\n[ 57.338948] __vfs_removexattr+0x92/0xc0\n[ 57.339182] __vfs_removexattr_locked+0xd5/0x190\n[ 57.339456] ? preempt_count_sub+0x50/0x80\n[ 57.339705] vfs_removexattr+0x5f/0x100\n[...]\n\nReproducer uses faultinject facility to fail ocfs2_xa_remove() -\u003e\nocfs2_xa_value_truncate() with -ENOMEM.\n\nIn this case the comment mentions that we can return 0 if\nocfs2_xa_cleanup_value_truncate() is going to wipe the entry\nanyway. But the following \u0027rc\u0027 check is wrong and execution flow do\n\u0027ocfs2_xa_remove_entry(loc);\u0027 twice:\n* 1st: in ocfs2_xa_cleanup_value_truncate();\n* 2nd: returning back to ocfs2_xa_remove() instead of going to \u0027out\u0027.\n\nFix this by skipping the 2nd removal of the same entry and making\nsyzkaller repro happy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50265",
"url": "https://www.suse.com/security/cve/CVE-2024-50265"
},
{
"category": "external",
"summary": "SUSE Bug 1233454 for CVE-2024-50265",
"url": "https://bugzilla.suse.com/1233454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50265"
},
{
"cve": "CVE-2024-50267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: serial: io_edgeport: fix use after free in debug printk\n\nThe \"dev_dbg(\u0026urb-\u003edev-\u003edev, ...\" which happens after usb_free_urb(urb)\nis a use after free of the \"urb\" pointer. Store the \"dev\" pointer at the\nstart of the function to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50267",
"url": "https://www.suse.com/security/cve/CVE-2024-50267"
},
{
"category": "external",
"summary": "SUSE Bug 1233456 for CVE-2024-50267",
"url": "https://bugzilla.suse.com/1233456"
},
{
"category": "external",
"summary": "SUSE Bug 1233711 for CVE-2024-50267",
"url": "https://bugzilla.suse.com/1233711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50267"
},
{
"cve": "CVE-2024-50268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()\n\nThe \"*cmd\" variable can be controlled by the user via debugfs. That means\n\"new_cam\" can be as high as 255 while the size of the uc-\u003eupdated[] array\nis UCSI_MAX_ALTMODES (30).\n\nThe call tree is:\nucsi_cmd() // val comes from simple_attr_write_xsigned()\n-\u003e ucsi_send_command()\n -\u003e ucsi_send_command_common()\n -\u003e ucsi_run_command() // calls ucsi-\u003eops-\u003esync_control()\n -\u003e ucsi_ccg_sync_control()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50268",
"url": "https://www.suse.com/security/cve/CVE-2024-50268"
},
{
"category": "external",
"summary": "SUSE Bug 1233457 for CVE-2024-50268",
"url": "https://bugzilla.suse.com/1233457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50268"
},
{
"cve": "CVE-2024-50269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: sunxi: Fix accessing an released usb phy\n\nCommit 6ed05c68cbca (\"usb: musb: sunxi: Explicitly release USB PHY on\nexit\") will cause that usb phy @glue-\u003exceiv is accessed after released.\n\n1) register platform driver @sunxi_musb_driver\n// get the usb phy @glue-\u003exceiv\nsunxi_musb_probe() -\u003e devm_usb_get_phy().\n\n2) register and unregister platform driver @musb_driver\nmusb_probe() -\u003e sunxi_musb_init()\nuse the phy here\n//the phy is released here\nmusb_remove() -\u003e sunxi_musb_exit() -\u003e devm_usb_put_phy()\n\n3) register @musb_driver again\nmusb_probe() -\u003e sunxi_musb_init()\nuse the phy here but the phy has been released at 2).\n...\n\nFixed by reverting the commit, namely, removing devm_usb_put_phy()\nfrom sunxi_musb_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50269",
"url": "https://www.suse.com/security/cve/CVE-2024-50269"
},
{
"category": "external",
"summary": "SUSE Bug 1233458 for CVE-2024-50269",
"url": "https://bugzilla.suse.com/1233458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50269"
},
{
"cve": "CVE-2024-50271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsignal: restore the override_rlimit logic\n\nPrior to commit d64696905554 (\"Reimplement RLIMIT_SIGPENDING on top of\nucounts\") UCOUNT_RLIMIT_SIGPENDING rlimit was not enforced for a class of\nsignals. However now it\u0027s enforced unconditionally, even if\noverride_rlimit is set. This behavior change caused production issues. \n\nFor example, if the limit is reached and a process receives a SIGSEGV\nsignal, sigqueue_alloc fails to allocate the necessary resources for the\nsignal delivery, preventing the signal from being delivered with siginfo. \nThis prevents the process from correctly identifying the fault address and\nhandling the error. From the user-space perspective, applications are\nunaware that the limit has been reached and that the siginfo is\neffectively \u0027corrupted\u0027. This can lead to unpredictable behavior and\ncrashes, as we observed with java applications.\n\nFix this by passing override_rlimit into inc_rlimit_get_ucounts() and skip\nthe comparison to max there if override_rlimit is set. This effectively\nrestores the old behavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50271",
"url": "https://www.suse.com/security/cve/CVE-2024-50271"
},
{
"category": "external",
"summary": "SUSE Bug 1233460 for CVE-2024-50271",
"url": "https://bugzilla.suse.com/1233460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50271"
},
{
"cve": "CVE-2024-50273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: reinitialize delayed ref list after deleting it from the list\n\nAt insert_delayed_ref() if we need to update the action of an existing\nref to BTRFS_DROP_DELAYED_REF, we delete the ref from its ref head\u0027s\nref_add_list using list_del(), which leaves the ref\u0027s add_list member\nnot reinitialized, as list_del() sets the next and prev members of the\nlist to LIST_POISON1 and LIST_POISON2, respectively.\n\nIf later we end up calling drop_delayed_ref() against the ref, which can\nhappen during merging or when destroying delayed refs due to a transaction\nabort, we can trigger a crash since at drop_delayed_ref() we call\nlist_empty() against the ref\u0027s add_list, which returns false since\nthe list was not reinitialized after the list_del() and as a consequence\nwe call list_del() again at drop_delayed_ref(). This results in an\ninvalid list access since the next and prev members are set to poison\npointers, resulting in a splat if CONFIG_LIST_HARDENED and\nCONFIG_DEBUG_LIST are set or invalid poison pointer dereferences\notherwise.\n\nSo fix this by deleting from the list with list_del_init() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50273",
"url": "https://www.suse.com/security/cve/CVE-2024-50273"
},
{
"category": "external",
"summary": "SUSE Bug 1233462 for CVE-2024-50273",
"url": "https://bugzilla.suse.com/1233462"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50273"
},
{
"cve": "CVE-2024-50274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: avoid vport access in idpf_get_link_ksettings\n\nWhen the device control plane is removed or the platform\nrunning device control plane is rebooted, a reset is detected\non the driver. On driver reset, it releases the resources and\nwaits for the reset to complete. If the reset fails, it takes\nthe error path and releases the vport lock. At this time if the\nmonitoring tools tries to access link settings, it call traces\nfor accessing released vport pointer.\n\nTo avoid it, move link_speed_mbps to netdev_priv structure\nwhich removes the dependency on vport pointer and the vport lock\nin idpf_get_link_ksettings. Also use netif_carrier_ok()\nto check the link status and adjust the offsetof to use link_up\ninstead of link_speed_mbps.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50274",
"url": "https://www.suse.com/security/cve/CVE-2024-50274"
},
{
"category": "external",
"summary": "SUSE Bug 1233463 for CVE-2024-50274",
"url": "https://bugzilla.suse.com/1233463"
},
{
"category": "external",
"summary": "SUSE Bug 1235104 for CVE-2024-50274",
"url": "https://bugzilla.suse.com/1235104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50274"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()\n\nAvoid a possible buffer overflow if size is larger than 4K.\n\n(cherry picked from commit f5d873f5825b40d886d03bd2aede91d4cf002434)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50282",
"url": "https://www.suse.com/security/cve/CVE-2024-50282"
},
{
"category": "external",
"summary": "SUSE Bug 1233471 for CVE-2024-50282",
"url": "https://bugzilla.suse.com/1233471"
},
{
"category": "external",
"summary": "SUSE Bug 1233707 for CVE-2024-50282",
"url": "https://bugzilla.suse.com/1233707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50282"
},
{
"cve": "CVE-2024-50287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-tpg: prevent the risk of a division by zero\n\nAs reported by Coverity, the logic at tpg_precalculate_line()\nblindly rescales the buffer even when scaled_witdh is equal to\nzero. If this ever happens, this will cause a division by zero.\n\nInstead, add a WARN_ON_ONCE() to trigger such cases and return\nwithout doing any precalculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50287",
"url": "https://www.suse.com/security/cve/CVE-2024-50287"
},
{
"category": "external",
"summary": "SUSE Bug 1233476 for CVE-2024-50287",
"url": "https://bugzilla.suse.com/1233476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50287"
},
{
"cve": "CVE-2024-50289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: av7110: fix a spectre vulnerability\n\nAs warned by smatch:\n\tdrivers/staging/media/av7110/av7110_ca.c:270 dvb_ca_ioctl() warn: potential spectre issue \u0027av7110-\u003eci_slot\u0027 [w] (local cap)\n\nThere is a spectre-related vulnerability at the code. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50289",
"url": "https://www.suse.com/security/cve/CVE-2024-50289"
},
{
"category": "external",
"summary": "SUSE Bug 1233478 for CVE-2024-50289",
"url": "https://bugzilla.suse.com/1233478"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50289"
},
{
"cve": "CVE-2024-50290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: cx24116: prevent overflows on SNR calculus\n\nas reported by Coverity, if reading SNR registers fail, a negative\nnumber will be returned, causing an underflow when reading SNR\nregisters.\n\nPrevent that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50290",
"url": "https://www.suse.com/security/cve/CVE-2024-50290"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1233479 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1233479"
},
{
"category": "external",
"summary": "SUSE Bug 1233681 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1233681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50290"
},
{
"cve": "CVE-2024-50292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove\n\nIn case of error when requesting ctrl_chan DMA channel, ctrl_chan is not\nnull. So the release of the dma channel leads to the following issue:\n[ 4.879000] st,stm32-spdifrx 500d0000.audio-controller:\ndma_request_slave_channel error -19\n[ 4.888975] Unable to handle kernel NULL pointer dereference\nat virtual address 000000000000003d\n[...]\n[ 5.096577] Call trace:\n[ 5.099099] dma_release_channel+0x24/0x100\n[ 5.103235] stm32_spdifrx_remove+0x24/0x60 [snd_soc_stm32_spdifrx]\n[ 5.109494] stm32_spdifrx_probe+0x320/0x4c4 [snd_soc_stm32_spdifrx]\n\nTo avoid this issue, release channel only if the pointer is valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50292",
"url": "https://www.suse.com/security/cve/CVE-2024-50292"
},
{
"category": "external",
"summary": "SUSE Bug 1233481 for CVE-2024-50292",
"url": "https://bugzilla.suse.com/1233481"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50292"
},
{
"cve": "CVE-2024-50295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50295"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: arc: fix the device for dma_map_single/dma_unmap_single\n\nThe ndev-\u003edev and pdev-\u003edev aren\u0027t the same device, use ndev-\u003edev.parent\nwhich has dma_mask, ndev-\u003edev.parent is just pdev-\u003edev.\nOr it would cause the following issue:\n\n[ 39.933526] ------------[ cut here ]------------\n[ 39.938414] WARNING: CPU: 1 PID: 501 at kernel/dma/mapping.c:149 dma_map_page_attrs+0x90/0x1f8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50295",
"url": "https://www.suse.com/security/cve/CVE-2024-50295"
},
{
"category": "external",
"summary": "SUSE Bug 1233484 for CVE-2024-50295",
"url": "https://bugzilla.suse.com/1233484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50295"
},
{
"cve": "CVE-2024-50298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: allocate vf_state during PF probes\n\nIn the previous implementation, vf_state is allocated memory only when VF\nis enabled. However, net_device_ops::ndo_set_vf_mac() may be called before\nVF is enabled to configure the MAC address of VF. If this is the case,\nenetc_pf_set_vf_mac() will access vf_state, resulting in access to a null\npointer. The simplified error log is as follows.\n\nroot@ls1028ardb:~# ip link set eno0 vf 1 mac 00:0c:e7:66:77:89\n[ 173.543315] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000004\n[ 173.637254] pc : enetc_pf_set_vf_mac+0x3c/0x80 Message from sy\n[ 173.641973] lr : do_setlink+0x4a8/0xec8\n[ 173.732292] Call trace:\n[ 173.734740] enetc_pf_set_vf_mac+0x3c/0x80\n[ 173.738847] __rtnl_newlink+0x530/0x89c\n[ 173.742692] rtnl_newlink+0x50/0x7c\n[ 173.746189] rtnetlink_rcv_msg+0x128/0x390\n[ 173.750298] netlink_rcv_skb+0x60/0x130\n[ 173.754145] rtnetlink_rcv+0x18/0x24\n[ 173.757731] netlink_unicast+0x318/0x380\n[ 173.761665] netlink_sendmsg+0x17c/0x3c8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50298",
"url": "https://www.suse.com/security/cve/CVE-2024-50298"
},
{
"category": "external",
"summary": "SUSE Bug 1233487 for CVE-2024-50298",
"url": "https://bugzilla.suse.com/1233487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-50298"
},
{
"cve": "CVE-2024-50301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecurity/keys: fix slab-out-of-bounds in key_task_permission\n\nKASAN reports an out of bounds read:\nBUG: KASAN: slab-out-of-bounds in __kuid_val include/linux/uidgid.h:36\nBUG: KASAN: slab-out-of-bounds in uid_eq include/linux/uidgid.h:63 [inline]\nBUG: KASAN: slab-out-of-bounds in key_task_permission+0x394/0x410\nsecurity/keys/permission.c:54\nRead of size 4 at addr ffff88813c3ab618 by task stress-ng/4362\n\nCPU: 2 PID: 4362 Comm: stress-ng Not tainted 5.10.0-14930-gafbffd6c3ede #15\nCall Trace:\n __dump_stack lib/dump_stack.c:82 [inline]\n dump_stack+0x107/0x167 lib/dump_stack.c:123\n print_address_description.constprop.0+0x19/0x170 mm/kasan/report.c:400\n __kasan_report.cold+0x6c/0x84 mm/kasan/report.c:560\n kasan_report+0x3a/0x50 mm/kasan/report.c:585\n __kuid_val include/linux/uidgid.h:36 [inline]\n uid_eq include/linux/uidgid.h:63 [inline]\n key_task_permission+0x394/0x410 security/keys/permission.c:54\n search_nested_keyrings+0x90e/0xe90 security/keys/keyring.c:793\n\nThis issue was also reported by syzbot.\n\nIt can be reproduced by following these steps(more details [1]):\n1. Obtain more than 32 inputs that have similar hashes, which ends with the\n pattern \u00270xxxxxxxe6\u0027.\n2. Reboot and add the keys obtained in step 1.\n\nThe reproducer demonstrates how this issue happened:\n1. In the search_nested_keyrings function, when it iterates through the\n slots in a node(below tag ascend_to_node), if the slot pointer is meta\n and node-\u003eback_pointer != NULL(it means a root), it will proceed to\n descend_to_node. However, there is an exception. If node is the root,\n and one of the slots points to a shortcut, it will be treated as a\n keyring.\n2. Whether the ptr is keyring decided by keyring_ptr_is_keyring function.\n However, KEYRING_PTR_SUBTYPE is 0x2UL, the same as\n ASSOC_ARRAY_PTR_SUBTYPE_MASK.\n3. When 32 keys with the similar hashes are added to the tree, the ROOT\n has keys with hashes that are not similar (e.g. slot 0) and it splits\n NODE A without using a shortcut. When NODE A is filled with keys that\n all hashes are xxe6, the keys are similar, NODE A will split with a\n shortcut. Finally, it forms the tree as shown below, where slot 6 points\n to a shortcut.\n\n NODE A\n +------\u003e+---+\n ROOT | | 0 | xxe6\n +---+ | +---+\n xxxx | 0 | shortcut : : xxe6\n +---+ | +---+\n xxe6 : : | | | xxe6\n +---+ | +---+\n | 6 |---+ : : xxe6\n +---+ +---+\n xxe6 : : | f | xxe6\n +---+ +---+\n xxe6 | f |\n +---+\n\n4. As mentioned above, If a slot(slot 6) of the root points to a shortcut,\n it may be mistakenly transferred to a key*, leading to a read\n out-of-bounds read.\n\nTo fix this issue, one should jump to descend_to_node if the ptr is a\nshortcut, regardless of whether the node is root or not.\n\n[1] https://lore.kernel.org/linux-kernel/1cfa878e-8c7b-4570-8606-21daf5e13ce7@huaweicloud.com/\n\n[jarkko: tweaked the commit message a bit to have an appropriate closes\n tag.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50301",
"url": "https://www.suse.com/security/cve/CVE-2024-50301"
},
{
"category": "external",
"summary": "SUSE Bug 1233490 for CVE-2024-50301",
"url": "https://bugzilla.suse.com/1233490"
},
{
"category": "external",
"summary": "SUSE Bug 1233680 for CVE-2024-50301",
"url": "https://bugzilla.suse.com/1233680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50301"
},
{
"cve": "CVE-2024-50302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: core: zero-initialize the report buffer\n\nSince the report buffer is used by all kinds of drivers in various ways, let\u0027s\nzero-initialize it during allocation to make sure that it can\u0027t be ever used\nto leak kernel memory via specially-crafted report.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50302",
"url": "https://www.suse.com/security/cve/CVE-2024-50302"
},
{
"category": "external",
"summary": "SUSE Bug 1233491 for CVE-2024-50302",
"url": "https://bugzilla.suse.com/1233491"
},
{
"category": "external",
"summary": "SUSE Bug 1233679 for CVE-2024-50302",
"url": "https://bugzilla.suse.com/1233679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-50302"
},
{
"cve": "CVE-2024-53052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53052"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/rw: fix missing NOWAIT check for O_DIRECT start write\n\nWhen io_uring starts a write, it\u0027ll call kiocb_start_write() to bump the\nsuper block rwsem, preventing any freezes from happening while that\nwrite is in-flight. The freeze side will grab that rwsem for writing,\nexcluding any new writers from happening and waiting for existing writes\nto finish. But io_uring unconditionally uses kiocb_start_write(), which\nwill block if someone is currently attempting to freeze the mount point.\nThis causes a deadlock where freeze is waiting for previous writes to\ncomplete, but the previous writes cannot complete, as the task that is\nsupposed to complete them is blocked waiting on starting a new write.\nThis results in the following stuck trace showing that dependency with\nthe write blocked starting a new write:\n\ntask:fio state:D stack:0 pid:886 tgid:886 ppid:876\nCall trace:\n __switch_to+0x1d8/0x348\n __schedule+0x8e8/0x2248\n schedule+0x110/0x3f0\n percpu_rwsem_wait+0x1e8/0x3f8\n __percpu_down_read+0xe8/0x500\n io_write+0xbb8/0xff8\n io_issue_sqe+0x10c/0x1020\n io_submit_sqes+0x614/0x2110\n __arm64_sys_io_uring_enter+0x524/0x1038\n invoke_syscall+0x74/0x268\n el0_svc_common.constprop.0+0x160/0x238\n do_el0_svc+0x44/0x60\n el0_svc+0x44/0xb0\n el0t_64_sync_handler+0x118/0x128\n el0t_64_sync+0x168/0x170\nINFO: task fsfreeze:7364 blocked for more than 15 seconds.\n Not tainted 6.12.0-rc5-00063-g76aaf945701c #7963\n\nwith the attempting freezer stuck trying to grab the rwsem:\n\ntask:fsfreeze state:D stack:0 pid:7364 tgid:7364 ppid:995\nCall trace:\n __switch_to+0x1d8/0x348\n __schedule+0x8e8/0x2248\n schedule+0x110/0x3f0\n percpu_down_write+0x2b0/0x680\n freeze_super+0x248/0x8a8\n do_vfs_ioctl+0x149c/0x1b18\n __arm64_sys_ioctl+0xd0/0x1a0\n invoke_syscall+0x74/0x268\n el0_svc_common.constprop.0+0x160/0x238\n do_el0_svc+0x44/0x60\n el0_svc+0x44/0xb0\n el0t_64_sync_handler+0x118/0x128\n el0t_64_sync+0x168/0x170\n\nFix this by having the io_uring side honor IOCB_NOWAIT, and only attempt a\nblocking grab of the super block rwsem if it isn\u0027t set. For normal issue\nwhere IOCB_NOWAIT would always be set, this returns -EAGAIN which will\nhave io_uring core issue a blocking attempt of the write. That will in\nturn also get completions run, ensuring forward progress.\n\nSince freezing requires CAP_SYS_ADMIN in the first place, this isn\u0027t\nsomething that can be triggered by a regular user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53052",
"url": "https://www.suse.com/security/cve/CVE-2024-53052"
},
{
"category": "external",
"summary": "SUSE Bug 1233548 for CVE-2024-53052",
"url": "https://bugzilla.suse.com/1233548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53052"
},
{
"cve": "CVE-2024-53058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53058"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data\n\nIn case the non-paged data of a SKB carries protocol header and protocol\npayload to be transmitted on a certain platform that the DMA AXI address\nwidth is configured to 40-bit/48-bit, or the size of the non-paged data\nis bigger than TSO_MAX_BUFF_SIZE on a certain platform that the DMA AXI\naddress width is configured to 32-bit, then this SKB requires at least\ntwo DMA transmit descriptors to serve it.\n\nFor example, three descriptors are allocated to split one DMA buffer\nmapped from one piece of non-paged data:\n dma_desc[N + 0],\n dma_desc[N + 1],\n dma_desc[N + 2].\nThen three elements of tx_q-\u003etx_skbuff_dma[] will be allocated to hold\nextra information to be reused in stmmac_tx_clean():\n tx_q-\u003etx_skbuff_dma[N + 0],\n tx_q-\u003etx_skbuff_dma[N + 1],\n tx_q-\u003etx_skbuff_dma[N + 2].\nNow we focus on tx_q-\u003etx_skbuff_dma[entry].buf, which is the DMA buffer\naddress returned by DMA mapping call. stmmac_tx_clean() will try to\nunmap the DMA buffer _ONLY_IF_ tx_q-\u003etx_skbuff_dma[entry].buf\nis a valid buffer address.\n\nThe expected behavior that saves DMA buffer address of this non-paged\ndata to tx_q-\u003etx_skbuff_dma[entry].buf is:\n tx_q-\u003etx_skbuff_dma[N + 0].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 1].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 2].buf = dma_map_single();\nUnfortunately, the current code misbehaves like this:\n tx_q-\u003etx_skbuff_dma[N + 0].buf = dma_map_single();\n tx_q-\u003etx_skbuff_dma[N + 1].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 2].buf = NULL;\n\nOn the stmmac_tx_clean() side, when dma_desc[N + 0] is closed by the\nDMA engine, tx_q-\u003etx_skbuff_dma[N + 0].buf is a valid buffer address\nobviously, then the DMA buffer will be unmapped immediately.\nThere may be a rare case that the DMA engine does not finish the\npending dma_desc[N + 1], dma_desc[N + 2] yet. Now things will go\nhorribly wrong, DMA is going to access a unmapped/unreferenced memory\nregion, corrupted data will be transmited or iommu fault will be\ntriggered :(\n\nIn contrast, the for-loop that maps SKB fragments behaves perfectly\nas expected, and that is how the driver should do for both non-paged\ndata and paged frags actually.\n\nThis patch corrects DMA map/unmap sequences by fixing the array index\nfor tx_q-\u003etx_skbuff_dma[entry].buf when assigning DMA buffer address.\n\nTested and verified on DWXGMAC CORE 3.20a",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53058",
"url": "https://www.suse.com/security/cve/CVE-2024-53058"
},
{
"category": "external",
"summary": "SUSE Bug 1233552 for CVE-2024-53058",
"url": "https://bugzilla.suse.com/1233552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53058"
},
{
"cve": "CVE-2024-53059",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53059"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()\n\n1. The size of the response packet is not validated.\n2. The response buffer is not freed.\n\nResolve these issues by switching to iwl_mvm_send_cmd_status(),\nwhich handles both size validation and frees the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53059",
"url": "https://www.suse.com/security/cve/CVE-2024-53059"
},
{
"category": "external",
"summary": "SUSE Bug 1233553 for CVE-2024-53059",
"url": "https://bugzilla.suse.com/1233553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53059"
},
{
"cve": "CVE-2024-53060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: prevent NULL pointer dereference if ATIF is not supported\n\nacpi_evaluate_object() may return AE_NOT_FOUND (failure), which\nwould result in dereferencing buffer.pointer (obj) while being NULL.\n\nAlthough this case may be unrealistic for the current code, it is\nstill better to protect against possible bugs.\n\nBail out also when status is AE_NOT_FOUND.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity\nReport: CID 1600951: Null pointer dereferences (FORWARD_NULL)\n\n(cherry picked from commit 91c9e221fe2553edf2db71627d8453f083de87a1)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53060",
"url": "https://www.suse.com/security/cve/CVE-2024-53060"
},
{
"category": "external",
"summary": "SUSE Bug 1233554 for CVE-2024-53060",
"url": "https://bugzilla.suse.com/1233554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53060"
},
{
"cve": "CVE-2024-53061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53061"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p-jpeg: prevent buffer overflows\n\nThe current logic allows word to be less than 2. If this happens,\nthere will be buffer overflows, as reported by smatch. Add extra\nchecks to prevent it.\n\nWhile here, remove an unused word = 0 assignment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53061",
"url": "https://www.suse.com/security/cve/CVE-2024-53061"
},
{
"category": "external",
"summary": "SUSE Bug 1233555 for CVE-2024-53061",
"url": "https://bugzilla.suse.com/1233555"
},
{
"category": "external",
"summary": "SUSE Bug 1233621 for CVE-2024-53061",
"url": "https://bugzilla.suse.com/1233621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-53061"
},
{
"cve": "CVE-2024-53063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53063"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvbdev: prevent the risk of out of memory access\n\nThe dvbdev contains a static variable used to store dvb minors.\n\nThe behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set\nor not. When not set, dvb_register_device() won\u0027t check for\nboundaries, as it will rely that a previous call to\ndvb_register_adapter() would already be enforcing it.\n\nOn a similar way, dvb_device_open() uses the assumption\nthat the register functions already did the needed checks.\n\nThis can be fragile if some device ends using different\ncalls. This also generate warnings on static check analysers\nlike Coverity.\n\nSo, add explicit guards to prevent potential risk of OOM issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53063",
"url": "https://www.suse.com/security/cve/CVE-2024-53063"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1233557 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1233557"
},
{
"category": "external",
"summary": "SUSE Bug 1233619 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1233619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-53063"
},
{
"cve": "CVE-2024-53066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: Fix KMSAN warning in decode_getfattr_attrs()\n\nFix the following KMSAN warning:\n\nCPU: 1 UID: 0 PID: 7651 Comm: cp Tainted: G B\nTainted: [B]=BAD_PAGE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n=====================================================\n=====================================================\nBUG: KMSAN: uninit-value in decode_getfattr_attrs+0x2d6d/0x2f90\n decode_getfattr_attrs+0x2d6d/0x2f90\n decode_getfattr_generic+0x806/0xb00\n nfs4_xdr_dec_getattr+0x1de/0x240\n rpcauth_unwrap_resp_decode+0xab/0x100\n rpcauth_unwrap_resp+0x95/0xc0\n call_decode+0x4ff/0xb50\n __rpc_execute+0x57b/0x19d0\n rpc_execute+0x368/0x5e0\n rpc_run_task+0xcfe/0xee0\n nfs4_proc_getattr+0x5b5/0x990\n __nfs_revalidate_inode+0x477/0xd00\n nfs_access_get_cached+0x1021/0x1cc0\n nfs_do_access+0x9f/0xae0\n nfs_permission+0x1e4/0x8c0\n inode_permission+0x356/0x6c0\n link_path_walk+0x958/0x1330\n path_lookupat+0xce/0x6b0\n filename_lookup+0x23e/0x770\n vfs_statx+0xe7/0x970\n vfs_fstatat+0x1f2/0x2c0\n __se_sys_newfstatat+0x67/0x880\n __x64_sys_newfstatat+0xbd/0x120\n x64_sys_call+0x1826/0x3cf0\n do_syscall_64+0xd0/0x1b0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe KMSAN warning is triggered in decode_getfattr_attrs(), when calling\ndecode_attr_mdsthreshold(). It appears that fattr-\u003emdsthreshold is not\ninitialized.\n\nFix the issue by initializing fattr-\u003emdsthreshold to NULL in\nnfs_fattr_init().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53066",
"url": "https://www.suse.com/security/cve/CVE-2024-53066"
},
{
"category": "external",
"summary": "SUSE Bug 1233560 for CVE-2024-53066",
"url": "https://bugzilla.suse.com/1233560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53066"
},
{
"cve": "CVE-2024-53068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53068"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier()\n\nThe scmi_dev-\u003ename is released prematurely in __scmi_device_destroy(),\nwhich causes slab-use-after-free when accessing scmi_dev-\u003ename in\nscmi_bus_notifier(). So move the release of scmi_dev-\u003ename to\nscmi_device_release() to avoid slab-use-after-free.\n\n | BUG: KASAN: slab-use-after-free in strncmp+0xe4/0xec\n | Read of size 1 at addr ffffff80a482bcc0 by task swapper/0/1\n |\n | CPU: 1 PID: 1 Comm: swapper/0 Not tainted 6.6.38-debug #1\n | Hardware name: Qualcomm Technologies, Inc. SA8775P Ride (DT)\n | Call trace:\n | dump_backtrace+0x94/0x114\n | show_stack+0x18/0x24\n | dump_stack_lvl+0x48/0x60\n | print_report+0xf4/0x5b0\n | kasan_report+0xa4/0xec\n | __asan_report_load1_noabort+0x20/0x2c\n | strncmp+0xe4/0xec\n | scmi_bus_notifier+0x5c/0x54c\n | notifier_call_chain+0xb4/0x31c\n | blocking_notifier_call_chain+0x68/0x9c\n | bus_notify+0x54/0x78\n | device_del+0x1bc/0x840\n | device_unregister+0x20/0xb4\n | __scmi_device_destroy+0xac/0x280\n | scmi_device_destroy+0x94/0xd0\n | scmi_chan_setup+0x524/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20\n |\n | Allocated by task 1:\n | kasan_save_stack+0x2c/0x54\n | kasan_set_track+0x2c/0x40\n | kasan_save_alloc_info+0x24/0x34\n | __kasan_kmalloc+0xa0/0xb8\n | __kmalloc_node_track_caller+0x6c/0x104\n | kstrdup+0x48/0x84\n | kstrdup_const+0x34/0x40\n | __scmi_device_create.part.0+0x8c/0x408\n | scmi_device_create+0x104/0x370\n | scmi_chan_setup+0x2a0/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20\n |\n | Freed by task 1:\n | kasan_save_stack+0x2c/0x54\n | kasan_set_track+0x2c/0x40\n | kasan_save_free_info+0x38/0x5c\n | __kasan_slab_free+0xe8/0x164\n | __kmem_cache_free+0x11c/0x230\n | kfree+0x70/0x130\n | kfree_const+0x20/0x40\n | __scmi_device_destroy+0x70/0x280\n | scmi_device_destroy+0x94/0xd0\n | scmi_chan_setup+0x524/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53068",
"url": "https://www.suse.com/security/cve/CVE-2024-53068"
},
{
"category": "external",
"summary": "SUSE Bug 1233561 for CVE-2024-53068",
"url": "https://bugzilla.suse.com/1233561"
},
{
"category": "external",
"summary": "SUSE Bug 1233618 for CVE-2024-53068",
"url": "https://bugzilla.suse.com/1233618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-53068"
},
{
"cve": "CVE-2024-53079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/thp: fix deferred split unqueue naming and locking\n\nRecent changes are putting more pressure on THP deferred split queues:\nunder load revealing long-standing races, causing list_del corruptions,\n\"Bad page state\"s and worse (I keep BUGs in both of those, so usually\ndon\u0027t get to see how badly they end up without). The relevant recent\nchanges being 6.8\u0027s mTHP, 6.10\u0027s mTHP swapout, and 6.12\u0027s mTHP swapin,\nimproved swap allocation, and underused THP splitting.\n\nBefore fixing locking: rename misleading folio_undo_large_rmappable(),\nwhich does not undo large_rmappable, to folio_unqueue_deferred_split(),\nwhich is what it does. But that and its out-of-line __callee are mm\ninternals of very limited usability: add comment and WARN_ON_ONCEs to\ncheck usage; and return a bool to say if a deferred split was unqueued,\nwhich can then be used in WARN_ON_ONCEs around safety checks (sparing\ncallers the arcane conditionals in __folio_unqueue_deferred_split()).\n\nJust omit the folio_unqueue_deferred_split() from free_unref_folios(), all\nof whose callers now call it beforehand (and if any forget then bad_page()\nwill tell) - except for its caller put_pages_list(), which itself no\nlonger has any callers (and will be deleted separately).\n\nSwapout: mem_cgroup_swapout() has been resetting folio-\u003ememcg_data 0\nwithout checking and unqueueing a THP folio from deferred split list;\nwhich is unfortunate, since the split_queue_lock depends on the memcg\n(when memcg is enabled); so swapout has been unqueueing such THPs later,\nwhen freeing the folio, using the pgdat\u0027s lock instead: potentially\ncorrupting the memcg\u0027s list. __remove_mapping() has frozen refcount to 0\nhere, so no problem with calling folio_unqueue_deferred_split() before\nresetting memcg_data.\n\nThat goes back to 5.4 commit 87eaceb3faa5 (\"mm: thp: make deferred split\nshrinker memcg aware\"): which included a check on swapcache before adding\nto deferred queue, but no check on deferred queue before adding THP to\nswapcache. That worked fine with the usual sequence of events in reclaim\n(though there were a couple of rare ways in which a THP on deferred queue\ncould have been swapped out), but 6.12 commit dafff3f4c850 (\"mm: split\nunderused THPs\") avoids splitting underused THPs in reclaim, which makes\nswapcache THPs on deferred queue commonplace.\n\nKeep the check on swapcache before adding to deferred queue? Yes: it is\nno longer essential, but preserves the existing behaviour, and is likely\nto be a worthwhile optimization (vmstat showed much more traffic on the\nqueue under swapping load if the check was removed); update its comment.\n\nMemcg-v1 move (deprecated): mem_cgroup_move_account() has been changing\nfolio-\u003ememcg_data without checking and unqueueing a THP folio from the\ndeferred list, sometimes corrupting \"from\" memcg\u0027s list, like swapout. \nRefcount is non-zero here, so folio_unqueue_deferred_split() can only be\nused in a WARN_ON_ONCE to validate the fix, which must be done earlier:\nmem_cgroup_move_charge_pte_range() first try to split the THP (splitting\nof course unqueues), or skip it if that fails. Not ideal, but moving\ncharge has been requested, and khugepaged should repair the THP later:\nnobody wants new custom unqueueing code just for this deprecated case.\n\nThe 87eaceb3faa5 commit did have the code to move from one deferred list\nto another (but was not conscious of its unsafety while refcount non-0);\nbut that was removed by 5.6 commit fac0516b5534 (\"mm: thp: don\u0027t need care\ndeferred split queue in memcg charge move path\"), which argued that the\nexistence of a PMD mapping guarantees that the THP cannot be on a deferred\nlist. As above, false in rare cases, and now commonly false.\n\nBackport to 6.11 should be straightforward. Earlier backports must take\ncare that other _deferred_list fixes and dependencies are included. There\nis not a strong case for backports, but they can fix cornercases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53079",
"url": "https://www.suse.com/security/cve/CVE-2024-53079"
},
{
"category": "external",
"summary": "SUSE Bug 1233570 for CVE-2024-53079",
"url": "https://bugzilla.suse.com/1233570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "low"
}
],
"title": "CVE-2024-53079"
},
{
"cve": "CVE-2024-53085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Lock TPM chip in tpm_pm_suspend() first\n\nSetting TPM_CHIP_FLAG_SUSPENDED in the end of tpm_pm_suspend() can be racy\naccording, as this leaves window for tpm_hwrng_read() to be called while\nthe operation is in progress. The recent bug report gives also evidence of\nthis behaviour.\n\nAadress this by locking the TPM chip before checking any chip-\u003eflags both\nin tpm_pm_suspend() and tpm_hwrng_read(). Move TPM_CHIP_FLAG_SUSPENDED\ncheck inside tpm_get_random() so that it will be always checked only when\nthe lock is reserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53085",
"url": "https://www.suse.com/security/cve/CVE-2024-53085"
},
{
"category": "external",
"summary": "SUSE Bug 1233577 for CVE-2024-53085",
"url": "https://bugzilla.suse.com/1233577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53085"
},
{
"cve": "CVE-2024-53088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: fix race condition by adding filter\u0027s intermediate sync state\n\nFix a race condition in the i40e driver that leads to MAC/VLAN filters\nbecoming corrupted and leaking. Address the issue that occurs under\nheavy load when multiple threads are concurrently modifying MAC/VLAN\nfilters by setting mac and port VLAN.\n\n1. Thread T0 allocates a filter in i40e_add_filter() within\n i40e_ndo_set_vf_port_vlan().\n2. Thread T1 concurrently frees the filter in __i40e_del_filter() within\n i40e_ndo_set_vf_mac().\n3. Subsequently, i40e_service_task() calls i40e_sync_vsi_filters(), which\n refers to the already freed filter memory, causing corruption.\n\nReproduction steps:\n1. Spawn multiple VFs.\n2. Apply a concurrent heavy load by running parallel operations to change\n MAC addresses on the VFs and change port VLANs on the host.\n3. Observe errors in dmesg:\n\"Error I40E_AQ_RC_ENOSPC adding RX filters on VF XX,\n\tplease set promiscuous on manually for VF XX\".\n\nExact code for stable reproduction Intel can\u0027t open-source now.\n\nThe fix involves implementing a new intermediate filter state,\nI40E_FILTER_NEW_SYNC, for the time when a filter is on a tmp_add_list.\nThese filters cannot be deleted from the hash list directly but\nmust be removed using the full process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53088",
"url": "https://www.suse.com/security/cve/CVE-2024-53088"
},
{
"category": "external",
"summary": "SUSE Bug 1233580 for CVE-2024-53088",
"url": "https://bugzilla.suse.com/1233580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53088"
},
{
"cve": "CVE-2024-53104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format\n\nThis can lead to out of bounds writes since frames of this type were not\ntaken into account when calculating the size of the frames buffer in\nuvc_parse_streaming.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53104",
"url": "https://www.suse.com/security/cve/CVE-2024-53104"
},
{
"category": "external",
"summary": "SUSE Bug 1234025 for CVE-2024-53104",
"url": "https://bugzilla.suse.com/1234025"
},
{
"category": "external",
"summary": "SUSE Bug 1236783 for CVE-2024-53104",
"url": "https://bugzilla.suse.com/1236783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "important"
}
],
"title": "CVE-2024-53104"
},
{
"cve": "CVE-2024-53110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvp_vdpa: fix id_table array not null terminated error\n\nAllocate one extra virtio_device_id as null terminator, otherwise\nvdpa_mgmtdev_get_classes() may iterate multiple times and visit\nundefined memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53110",
"url": "https://www.suse.com/security/cve/CVE-2024-53110"
},
{
"category": "external",
"summary": "SUSE Bug 1234085 for CVE-2024-53110",
"url": "https://bugzilla.suse.com/1234085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_79-rt-1-150500.11.3.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.79.1.noarch",
"openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.79.1.x86_64",
"openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.79.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-13T15:23:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-53110"
}
]
}
suse-su-2024:3561-1
Vulnerability from csaf_suse
Published
2024-10-09 08:45
Modified
2024-10-09 08:45
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Move fixes into sorted section (bsc#1230119)
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for 'dra7xx-pcie-main' IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Revert 'Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE' (git-fixes).
- Revert 'PCI: Extend ACS configurability (bsc#1228090).' (bsc#1229019)
- Revert 'drm/amdgpu: align pp_power_profile_mode with kernel docs' (stable-fixes).
- Revert 'media: tuners: fix error return code of hybrid_tuner_request_state()' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section'
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage'
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()'
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for '/tmp/perf-$PID.map' files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-2024-3561,SUSE-SLE-Module-Basesystem-15-SP6-2024-3561,SUSE-SLE-Module-Development-Tools-15-SP6-2024-3561,SUSE-SLE-Module-Legacy-15-SP6-2024-3561,SUSE-SLE-Module-Live-Patching-15-SP6-2024-3561,SUSE-SLE-Product-HA-15-SP6-2024-3561,SUSE-SLE-Product-WE-15-SP6-2024-3561,openSUSE-SLE-15.6-2024-3561
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-42265: protect the fetch of -\u003efd[fd] in do_dup2() from mispredictions (bsc#1229334).\n- CVE-2024-42294: block: fix deadlock between sd_remove \u0026 sd_release (bsc#1229371).\n- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).\n- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).\n- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).\n- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).\n- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).\n- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45003: Don\u0027t evict inode under the inode lru traversing context (bsc#1230245).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).\n- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).\n- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).\n- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).\n- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).\n- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: tegra: Fix CBB error during probe() (git-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- Move fixes into sorted section (bsc#1230119)\n- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).\n- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).\n- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \u0027dra7xx-pcie-main\u0027 IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).\n- Revert \u0027Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE\u0027 (git-fixes).\n- Revert \u0027PCI: Extend ACS configurability (bsc#1228090).\u0027 (bsc#1229019)\n- Revert \u0027drm/amdgpu: align pp_power_profile_mode with kernel docs\u0027 (stable-fixes).\n- Revert \u0027media: tuners: fix error return code of hybrid_tuner_request_state()\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027\n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027\n- Squashfs: sanity check symbolic link size (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (git-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: bcm: Remove proc entry when dev is unregistered (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: Release irq on error in m_can_open (git-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).\n- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).\n- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).\n- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).\n- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).\n- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).\n- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- driver: iio: add missing checks on iio_info\u0027s callback access (stable-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing (stable-fixes).\n- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).\n- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check BIOS images before it is used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check gpio_id before used as array index (stable-fixes).\n- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).\n- drm/amd/display: Check msg_id before processing transcation (stable-fixes).\n- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).\n- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).\n- drm/amd/display: Ensure array index tg_inst won\u0027t be -1 (stable-fixes).\n- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).\n- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).\n- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).\n- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).\n- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).\n- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).\n- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amd/display: Spinlock before reading event (stable-fixes).\n- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).\n- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).\n- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).\n- drm/amd/pm: Fix negative array index read (stable-fixes).\n- drm/amd/pm: check negtive return for table entries (stable-fixes).\n- drm/amd/pm: check specific index for aldebaran (stable-fixes).\n- drm/amd/pm: check specific index for smu13 (stable-fixes).\n- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).\n- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).\n- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).\n- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).\n- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).\n- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).\n- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).\n- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).\n- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).\n- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).\n- drm/amdgpu: fix dereference after null check (stable-fixes).\n- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix overflowed array index read warning (stable-fixes).\n- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).\n- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).\n- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).\n- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).\n- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).\n- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).\n- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).\n- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).\n- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).\n- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).\n- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).\n- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).\n- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/meson: plane: Add error handling (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).\n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- fuse: fix memory leak in fuse_create_open (bsc#1230124).\n- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).\n- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).\n- gpio: modepin: Enable module autoloading (git-fixes).\n- gpio: rockchip: fix OF node leak in probe() (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- iio: adc: ad7124: fix chip ID mismatch (git-fixes).\n- iio: adc: ad7124: fix config comparison (git-fixes).\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).\n- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)\n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- misc: fastrpc: Fix double free of \u0027buf\u0027 in error path (git-fixes).\n- mmc: core: apply SD quirks earlier during probe (git-fixes).\n- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).\n- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).\n- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup (git-fixes).\n- net: phy: Fix missing of_node_put() for leds (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nilfs2: fix state management in error path of log writing function (git-fixes).\n- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).\n- nouveau: fix the fwsec sb verification register (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).\n- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \u0027/tmp/perf-$PID.map\u0027 files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).\n- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- usbip: Do not submit special requests twice (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- usbnet: modern method to get random MAC (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath11k: initialize \u0027ret\u0027 in ath11k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).\n- wifi: cfg80211: restrict operation during radar detection (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).\n- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).\n- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).\n- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3561,SUSE-SLE-Module-Basesystem-15-SP6-2024-3561,SUSE-SLE-Module-Development-Tools-15-SP6-2024-3561,SUSE-SLE-Module-Legacy-15-SP6-2024-3561,SUSE-SLE-Module-Live-Patching-15-SP6-2024-3561,SUSE-SLE-Product-HA-15-SP6-2024-3561,SUSE-SLE-Product-WE-15-SP6-2024-3561,openSUSE-SLE-15.6-2024-3561",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3561-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3561-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243561-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3561-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019580.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1183045",
"url": "https://bugzilla.suse.com/1183045"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221527",
"url": "https://bugzilla.suse.com/1221527"
},
{
"category": "self",
"summary": "SUSE Bug 1221610",
"url": "https://bugzilla.suse.com/1221610"
},
{
"category": "self",
"summary": "SUSE Bug 1221650",
"url": "https://bugzilla.suse.com/1221650"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226846",
"url": "https://bugzilla.suse.com/1226846"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227726",
"url": "https://bugzilla.suse.com/1227726"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229001",
"url": "https://bugzilla.suse.com/1229001"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229334",
"url": "https://bugzilla.suse.com/1229334"
},
{
"category": "self",
"summary": "SUSE Bug 1229362",
"url": "https://bugzilla.suse.com/1229362"
},
{
"category": "self",
"summary": "SUSE Bug 1229363",
"url": "https://bugzilla.suse.com/1229363"
},
{
"category": "self",
"summary": "SUSE Bug 1229364",
"url": "https://bugzilla.suse.com/1229364"
},
{
"category": "self",
"summary": "SUSE Bug 1229371",
"url": "https://bugzilla.suse.com/1229371"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229389",
"url": "https://bugzilla.suse.com/1229389"
},
{
"category": "self",
"summary": "SUSE Bug 1229394",
"url": "https://bugzilla.suse.com/1229394"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229753",
"url": "https://bugzilla.suse.com/1229753"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229810",
"url": "https://bugzilla.suse.com/1229810"
},
{
"category": "self",
"summary": "SUSE Bug 1229899",
"url": "https://bugzilla.suse.com/1229899"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230123",
"url": "https://bugzilla.suse.com/1230123"
},
{
"category": "self",
"summary": "SUSE Bug 1230124",
"url": "https://bugzilla.suse.com/1230124"
},
{
"category": "self",
"summary": "SUSE Bug 1230125",
"url": "https://bugzilla.suse.com/1230125"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230171",
"url": "https://bugzilla.suse.com/1230171"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230180",
"url": "https://bugzilla.suse.com/1230180"
},
{
"category": "self",
"summary": "SUSE Bug 1230181",
"url": "https://bugzilla.suse.com/1230181"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230245",
"url": "https://bugzilla.suse.com/1230245"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE Bug 1231182",
"url": "https://bugzilla.suse.com/1231182"
},
{
"category": "self",
"summary": "SUSE Bug 1231183",
"url": "https://bugzilla.suse.com/1231183"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52610 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26640 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42294 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42304 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42305 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42306 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-10-09T08:45:13Z",
"generator": {
"date": "2024-10-09T08:45:13Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3561-1",
"initial_release_date": "2024-10-09T08:45:13Z",
"revision_history": [
{
"date": "2024-10-09T08:45:13Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-allwinner-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-altera-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-altera-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-amazon-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-amd-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-amd-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-amlogic-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-apm-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-apm-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-apple-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-apple-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-arm-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-arm-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-broadcom-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-cavium-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-exynos-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-freescale-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-hisilicon-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-lg-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-lg-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-marvell-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-mediatek-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-nvidia-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-qcom-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-renesas-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-rockchip-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-socionext-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-sprd-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"product_id": "dtb-xilinx-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"product_id": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-extra-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-default-optional-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"product_id": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-obs-qa-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kernel-syms-6.4.0-150600.23.25.1.aarch64",
"product_id": "kernel-syms-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"product_id": "reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-150600.23.25.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-150600.23.25.1.noarch",
"product_id": "kernel-devel-6.4.0-150600.23.25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-6.4.0-150600.23.25.2.noarch",
"product": {
"name": "kernel-docs-6.4.0-150600.23.25.2.noarch",
"product_id": "kernel-docs-6.4.0-150600.23.25.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"product": {
"name": "kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"product_id": "kernel-docs-html-6.4.0-150600.23.25.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-150600.23.25.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-150600.23.25.1.noarch",
"product_id": "kernel-macros-6.4.0-150600.23.25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-150600.23.25.1.noarch",
"product": {
"name": "kernel-source-6.4.0-150600.23.25.1.noarch",
"product_id": "kernel-source-6.4.0-150600.23.25.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"product": {
"name": "kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"product_id": "kernel-source-vanilla-6.4.0-150600.23.25.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-debug-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"product_id": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-extra-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-default-optional-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"product_id": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"product_id": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kernel-syms-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-devel-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-extra-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-default-optional-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"product_id": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"product_id": "kernel-obs-build-6.4.0-150600.23.25.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-obs-qa-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-syms-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-syms-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"product_id": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-debug-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-debug-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-debug-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"product_id": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"product_id": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-optional-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-default-vdso-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"product": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"product_id": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-obs-qa-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kernel-syms-6.4.0-150600.23.25.1.x86_64",
"product_id": "kernel-syms-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"product_id": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-150600.23.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-150600.23.25.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.4.0-150600.23.25.2.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch"
},
"product_reference": "kernel-docs-6.4.0-150600.23.25.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-150600.23.25.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-source-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP6",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-allwinner-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-altera-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-altera-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amazon-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amd-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-amd-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amlogic-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apm-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-apm-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apple-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-apple-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-arm-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-arm-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-broadcom-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-cavium-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-exynos-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-freescale-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-hisilicon-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-lg-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-lg-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-marvell-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-mediatek-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-nvidia-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-qcom-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-renesas-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-rockchip-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-socionext-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-sprd-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-xilinx-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-debug-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64"
},
"product_reference": "kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-vdso-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-150600.23.25.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.4.0-150600.23.25.2.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch"
},
"product_reference": "kernel-docs-6.4.0-150600.23.25.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-6.4.0-150600.23.25.2.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch"
},
"product_reference": "kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-150600.23.25.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64"
},
"product_reference": "kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-150600.23.25.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-source-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.4.0-150600.23.25.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch"
},
"product_reference": "kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kernel-syms-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix skb leak and crash on ooo frags\n\nact_ct adds skb-\u003eusers before defragmentation. If frags arrive in order,\nthe last frag\u0027s reference is reset in:\n\n inet_frag_reasm_prepare\n skb_morph\n\nwhich is not straightforward.\n\nHowever when frags arrive out of order, nobody unref the last frag, and\nall frags are leaked. The situation is even worse, as initiating packet\ncapture can lead to a crash[0] when skb has been cloned and shared at the\nsame time.\n\nFix the issue by removing skb_get() before defragmentation. act_ct\nreturns TC_ACT_CONSUMED when defrag failed or in progress.\n\n[0]:\n[ 843.804823] ------------[ cut here ]------------\n[ 843.809659] kernel BUG at net/core/skbuff.c:2091!\n[ 843.814516] invalid opcode: 0000 [#1] PREEMPT SMP\n[ 843.819296] CPU: 7 PID: 0 Comm: swapper/7 Kdump: loaded Tainted: G S 6.7.0-rc3 #2\n[ 843.824107] Hardware name: XFUSION 1288H V6/BC13MBSBD, BIOS 1.29 11/25/2022\n[ 843.828953] RIP: 0010:pskb_expand_head+0x2ac/0x300\n[ 843.833805] Code: 8b 70 28 48 85 f6 74 82 48 83 c6 08 bf 01 00 00 00 e8 38 bd ff ff 8b 83 c0 00 00 00 48 03 83 c8 00 00 00 e9 62 ff ff ff 0f 0b \u003c0f\u003e 0b e8 8d d0 ff ff e9 b3 fd ff ff 81 7c 24 14 40 01 00 00 4c 89\n[ 843.843698] RSP: 0018:ffffc9000cce07c0 EFLAGS: 00010202\n[ 843.848524] RAX: 0000000000000002 RBX: ffff88811a211d00 RCX: 0000000000000820\n[ 843.853299] RDX: 0000000000000640 RSI: 0000000000000000 RDI: ffff88811a211d00\n[ 843.857974] RBP: ffff888127d39518 R08: 00000000bee97314 R09: 0000000000000000\n[ 843.862584] R10: 0000000000000000 R11: ffff8881109f0000 R12: 0000000000000880\n[ 843.867147] R13: ffff888127d39580 R14: 0000000000000640 R15: ffff888170f7b900\n[ 843.871680] FS: 0000000000000000(0000) GS:ffff889ffffc0000(0000) knlGS:0000000000000000\n[ 843.876242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 843.880778] CR2: 00007fa42affcfb8 CR3: 000000011433a002 CR4: 0000000000770ef0\n[ 843.885336] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 843.889809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 843.894229] PKRU: 55555554\n[ 843.898539] Call Trace:\n[ 843.902772] \u003cIRQ\u003e\n[ 843.906922] ? __die_body+0x1e/0x60\n[ 843.911032] ? die+0x3c/0x60\n[ 843.915037] ? do_trap+0xe2/0x110\n[ 843.918911] ? pskb_expand_head+0x2ac/0x300\n[ 843.922687] ? do_error_trap+0x65/0x80\n[ 843.926342] ? pskb_expand_head+0x2ac/0x300\n[ 843.929905] ? exc_invalid_op+0x50/0x60\n[ 843.933398] ? pskb_expand_head+0x2ac/0x300\n[ 843.936835] ? asm_exc_invalid_op+0x1a/0x20\n[ 843.940226] ? pskb_expand_head+0x2ac/0x300\n[ 843.943580] inet_frag_reasm_prepare+0xd1/0x240\n[ 843.946904] ip_defrag+0x5d4/0x870\n[ 843.950132] nf_ct_handle_fragments+0xec/0x130 [nf_conntrack]\n[ 843.953334] tcf_ct_act+0x252/0xd90 [act_ct]\n[ 843.956473] ? tcf_mirred_act+0x516/0x5a0 [act_mirred]\n[ 843.959657] tcf_action_exec+0xa1/0x160\n[ 843.962823] fl_classify+0x1db/0x1f0 [cls_flower]\n[ 843.966010] ? skb_clone+0x53/0xc0\n[ 843.969173] tcf_classify+0x24d/0x420\n[ 843.972333] tc_run+0x8f/0xf0\n[ 843.975465] __netif_receive_skb_core+0x67a/0x1080\n[ 843.978634] ? dev_gro_receive+0x249/0x730\n[ 843.981759] __netif_receive_skb_list_core+0x12d/0x260\n[ 843.984869] netif_receive_skb_list_internal+0x1cb/0x2f0\n[ 843.987957] ? mlx5e_handle_rx_cqe_mpwrq_rep+0xfa/0x1a0 [mlx5_core]\n[ 843.991170] napi_complete_done+0x72/0x1a0\n[ 843.994305] mlx5e_napi_poll+0x28c/0x6d0 [mlx5_core]\n[ 843.997501] __napi_poll+0x25/0x1b0\n[ 844.000627] net_rx_action+0x256/0x330\n[ 844.003705] __do_softirq+0xb3/0x29b\n[ 844.006718] irq_exit_rcu+0x9e/0xc0\n[ 844.009672] common_interrupt+0x86/0xa0\n[ 844.012537] \u003c/IRQ\u003e\n[ 844.015285] \u003cTASK\u003e\n[ 844.017937] asm_common_interrupt+0x26/0x40\n[ 844.020591] RIP: 0010:acpi_safe_halt+0x1b/0x20\n[ 844.023247] Code: ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 65 48 8b 04 25 00 18 03 00 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 81 d0 44 00 fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52610",
"url": "https://www.suse.com/security/cve/CVE-2023-52610"
},
{
"category": "external",
"summary": "SUSE Bug 1221610 for CVE-2023-52610",
"url": "https://bugzilla.suse.com/1221610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26640"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: add sanity checks to rx zerocopy\n\nTCP rx zerocopy intent is to map pages initially allocated\nfrom NIC drivers, not pages owned by a fs.\n\nThis patch adds to can_map_frag() these additional checks:\n\n- Page must not be a compound one.\n- page-\u003emapping must be NULL.\n\nThis fixes the panic reported by ZhangPeng.\n\nsyzbot was able to loopback packets built with sendfile(),\nmapping pages owned by an ext4 file to TCP rx zerocopy.\n\nr3 = socket$inet_tcp(0x2, 0x1, 0x0)\nmmap(\u0026(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)\nr4 = socket$inet_tcp(0x2, 0x1, 0x0)\nbind$inet(r4, \u0026(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10)\nconnect$inet(r4, \u0026(0x7f00000006c0)={0x2, 0x4e24, @empty}, 0x10)\nr5 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)\nfallocate(r5, 0x0, 0x0, 0x85b8)\nsendfile(r4, r5, 0x0, 0x8ba0)\ngetsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23,\n \u0026(0x7f00000001c0)={\u0026(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0,\n 0x0, 0x0, 0x0, 0x0}, \u0026(0x7f0000000440)=0x40)\nr6 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26640",
"url": "https://www.suse.com/security/cve/CVE-2024-26640"
},
{
"category": "external",
"summary": "SUSE Bug 1221650 for CVE-2024-26640",
"url": "https://bugzilla.suse.com/1221650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-26640"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data races in unix_release_sock/unix_stream_sendmsg\n\nA data-race condition has been identified in af_unix. In one data path,\nthe write function unix_release_sock() atomically writes to\nsk-\u003esk_shutdown using WRITE_ONCE. However, on the reader side,\nunix_stream_sendmsg() does not read it atomically. Consequently, this\nissue is causing the following KCSAN splat to occur:\n\n\tBUG: KCSAN: data-race in unix_release_sock / unix_stream_sendmsg\n\n\twrite (marked) to 0xffff88867256ddbb of 1 bytes by task 7270 on cpu 28:\n\tunix_release_sock (net/unix/af_unix.c:640)\n\tunix_release (net/unix/af_unix.c:1050)\n\tsock_close (net/socket.c:659 net/socket.c:1421)\n\t__fput (fs/file_table.c:422)\n\t__fput_sync (fs/file_table.c:508)\n\t__se_sys_close (fs/open.c:1559 fs/open.c:1541)\n\t__x64_sys_close (fs/open.c:1541)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tread to 0xffff88867256ddbb of 1 bytes by task 989 on cpu 14:\n\tunix_stream_sendmsg (net/unix/af_unix.c:2273)\n\t__sock_sendmsg (net/socket.c:730 net/socket.c:745)\n\t____sys_sendmsg (net/socket.c:2584)\n\t__sys_sendmmsg (net/socket.c:2638 net/socket.c:2724)\n\t__x64_sys_sendmmsg (net/socket.c:2753 net/socket.c:2750 net/socket.c:2750)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tvalue changed: 0x01 -\u003e 0x03\n\nThe line numbers are related to commit dd5a440a31fa (\"Linux 6.9-rc7\").\n\nCommit e1d09c2c2f57 (\"af_unix: Fix data races around sk-\u003esk_shutdown.\")\naddressed a comparable issue in the past regarding sk-\u003esk_shutdown.\nHowever, it overlooked resolving this particular data path.\nThis patch only offending unix_stream_sendmsg() function, since the\nother reads seem to be protected by unix_state_lock() as discussed in",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38596",
"url": "https://www.suse.com/security/cve/CVE-2024-38596"
},
{
"category": "external",
"summary": "SUSE Bug 1226846 for CVE-2024-38596",
"url": "https://bugzilla.suse.com/1226846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-38596"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray\n\nPatch series \"mm/filemap: Limit page cache size to that supported by\nxarray\", v2.\n\nCurrently, xarray can\u0027t support arbitrary page cache size. More details\ncan be found from the WARN_ON() statement in xas_split_alloc(). In our\ntest whose code is attached below, we hit the WARN_ON() on ARM64 system\nwhere the base page size is 64KB and huge page size is 512MB. The issue\nwas reported long time ago and some discussions on it can be found here\n[1].\n\n[1] https://www.spinics.net/lists/linux-xfs/msg75404.html\n\nIn order to fix the issue, we need to adjust MAX_PAGECACHE_ORDER to one\nsupported by xarray and avoid PMD-sized page cache if needed. The code\nchanges are suggested by David Hildenbrand.\n\nPATCH[1] adjusts MAX_PAGECACHE_ORDER to that supported by xarray\nPATCH[2-3] avoids PMD-sized page cache in the synchronous readahead path\nPATCH[4] avoids PMD-sized page cache for shmem files if needed\n\nTest program\n============\n# cat test.c\n#define _GNU_SOURCE\n#include \u003cstdio.h\u003e\n#include \u003cstdlib.h\u003e\n#include \u003cunistd.h\u003e\n#include \u003cstring.h\u003e\n#include \u003cfcntl.h\u003e\n#include \u003cerrno.h\u003e\n#include \u003csys/syscall.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define TEST_XFS_FILENAME\t\"/tmp/data\"\n#define TEST_SHMEM_FILENAME\t\"/dev/shm/data\"\n#define TEST_MEM_SIZE\t\t0x20000000\n\nint main(int argc, char **argv)\n{\n\tconst char *filename;\n\tint fd = 0;\n\tvoid *buf = (void *)-1, *p;\n\tint pgsize = getpagesize();\n\tint ret;\n\n\tif (pgsize != 0x10000) {\n\t\tfprintf(stderr, \"64KB base page size is required\\n\");\n\t\treturn -EPERM;\n\t}\n\n\tsystem(\"echo force \u003e /sys/kernel/mm/transparent_hugepage/shmem_enabled\");\n\tsystem(\"rm -fr /tmp/data\");\n\tsystem(\"rm -fr /dev/shm/data\");\n\tsystem(\"echo 1 \u003e /proc/sys/vm/drop_caches\");\n\n\t/* Open xfs or shmem file */\n\tfilename = TEST_XFS_FILENAME;\n\tif (argc \u003e 1 \u0026\u0026 !strcmp(argv[1], \"shmem\"))\n\t\tfilename = TEST_SHMEM_FILENAME;\n\n\tfd = open(filename, O_CREAT | O_RDWR | O_TRUNC);\n\tif (fd \u003c 0) {\n\t\tfprintf(stderr, \"Unable to open \u003c%s\u003e\\n\", filename);\n\t\treturn -EIO;\n\t}\n\n\t/* Extend file size */\n\tret = ftruncate(fd, TEST_MEM_SIZE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to ftruncate()\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Create VMA */\n\tbuf = mmap(NULL, TEST_MEM_SIZE,\n\t\t PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);\n\tif (buf == (void *)-1) {\n\t\tfprintf(stderr, \"Unable to mmap \u003c%s\u003e\\n\", filename);\n\t\tgoto cleanup;\n\t}\n\n\tfprintf(stdout, \"mapped buffer at 0x%p\\n\", buf);\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_HUGEPAGE);\n if (ret) {\n\t\tfprintf(stderr, \"Unable to madvise(MADV_HUGEPAGE)\\n\");\n\t\tgoto cleanup;\n\t}\n\n\t/* Populate VMA */\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_POPULATE_WRITE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to madvise(MADV_POPULATE_WRITE)\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Punch the file to enforce xarray split */\n\tret = fallocate(fd, FALLOC_FL_KEEP_SIZE | FALLOC_FL_PUNCH_HOLE,\n \t\tTEST_MEM_SIZE - pgsize, pgsize);\n\tif (ret)\n\t\tfprintf(stderr, \"Error %d to fallocate()\\n\", ret);\n\ncleanup:\n\tif (buf != (void *)-1)\n\t\tmunmap(buf, TEST_MEM_SIZE);\n\tif (fd \u003e 0)\n\t\tclose(fd);\n\n\treturn 0;\n}\n\n# gcc test.c -o test\n# cat /proc/1/smaps | grep KernelPageSize | head -n 1\nKernelPageSize: 64 kB\n# ./test shmem\n :\n------------[ cut here ]------------\nWARNING: CPU: 17 PID: 5253 at lib/xarray.c:1025 xas_split_alloc+0xf8/0x128\nModules linked in: nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib \\\nnft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct \\\nnft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 \\\nip_set nf_tables rfkill nfnetlink vfat fat virtio_balloon \\\ndrm fuse xfs libcrc32c crct10dif_ce ghash_ce sha2_ce sha256_arm64 \\\nvirtio_net sha1_ce net_failover failover virtio_console virtio_blk \\\ndimlib virtio_mmio\nCPU: 17 PID: 5253 Comm: test Kdump: loaded Tainted: G W 6.10.0-rc5-gavin+ #12\nHardware name: QEMU KVM Virtual Machine, BIOS edk2-20240524-1.el9 05/24/2024\npstate: 83400005 (Nzcv daif +PAN -UAO +TC\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42243",
"url": "https://www.suse.com/security/cve/CVE-2024-42243"
},
{
"category": "external",
"summary": "SUSE Bug 1229001 for CVE-2024-42243",
"url": "https://bugzilla.suse.com/1229001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42243"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-42265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of -\u003efd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than -\u003emax_fds;\nhowever, misprediction might end up with\n tofree = fdt-\u003efd[fd];\nbeing speculatively executed. That\u0027s wrong for the same reasons\nwhy it\u0027s wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt-\u003emax_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42265",
"url": "https://www.suse.com/security/cve/CVE-2024-42265"
},
{
"category": "external",
"summary": "SUSE Bug 1229334 for CVE-2024-42265",
"url": "https://bugzilla.suse.com/1229334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42265"
},
{
"cve": "CVE-2024-42294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix deadlock between sd_remove \u0026 sd_release\n\nOur test report the following hung task:\n\n[ 2538.459400] INFO: task \"kworker/0:0\":7 blocked for more than 188 seconds.\n[ 2538.459427] Call trace:\n[ 2538.459430] __switch_to+0x174/0x338\n[ 2538.459436] __schedule+0x628/0x9c4\n[ 2538.459442] schedule+0x7c/0xe8\n[ 2538.459447] schedule_preempt_disabled+0x24/0x40\n[ 2538.459453] __mutex_lock+0x3ec/0xf04\n[ 2538.459456] __mutex_lock_slowpath+0x14/0x24\n[ 2538.459459] mutex_lock+0x30/0xd8\n[ 2538.459462] del_gendisk+0xdc/0x350\n[ 2538.459466] sd_remove+0x30/0x60\n[ 2538.459470] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459474] device_release_driver+0x18/0x28\n[ 2538.459478] bus_remove_device+0x15c/0x174\n[ 2538.459483] device_del+0x1d0/0x358\n[ 2538.459488] __scsi_remove_device+0xa8/0x198\n[ 2538.459493] scsi_forget_host+0x50/0x70\n[ 2538.459497] scsi_remove_host+0x80/0x180\n[ 2538.459502] usb_stor_disconnect+0x68/0xf4\n[ 2538.459506] usb_unbind_interface+0xd4/0x280\n[ 2538.459510] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459514] device_release_driver+0x18/0x28\n[ 2538.459518] bus_remove_device+0x15c/0x174\n[ 2538.459523] device_del+0x1d0/0x358\n[ 2538.459528] usb_disable_device+0x84/0x194\n[ 2538.459532] usb_disconnect+0xec/0x300\n[ 2538.459537] hub_event+0xb80/0x1870\n[ 2538.459541] process_scheduled_works+0x248/0x4dc\n[ 2538.459545] worker_thread+0x244/0x334\n[ 2538.459549] kthread+0x114/0x1bc\n\n[ 2538.461001] INFO: task \"fsck.\":15415 blocked for more than 188 seconds.\n[ 2538.461014] Call trace:\n[ 2538.461016] __switch_to+0x174/0x338\n[ 2538.461021] __schedule+0x628/0x9c4\n[ 2538.461025] schedule+0x7c/0xe8\n[ 2538.461030] blk_queue_enter+0xc4/0x160\n[ 2538.461034] blk_mq_alloc_request+0x120/0x1d4\n[ 2538.461037] scsi_execute_cmd+0x7c/0x23c\n[ 2538.461040] ioctl_internal_command+0x5c/0x164\n[ 2538.461046] scsi_set_medium_removal+0x5c/0xb0\n[ 2538.461051] sd_release+0x50/0x94\n[ 2538.461054] blkdev_put+0x190/0x28c\n[ 2538.461058] blkdev_release+0x28/0x40\n[ 2538.461063] __fput+0xf8/0x2a8\n[ 2538.461066] __fput_sync+0x28/0x5c\n[ 2538.461070] __arm64_sys_close+0x84/0xe8\n[ 2538.461073] invoke_syscall+0x58/0x114\n[ 2538.461078] el0_svc_common+0xac/0xe0\n[ 2538.461082] do_el0_svc+0x1c/0x28\n[ 2538.461087] el0_svc+0x38/0x68\n[ 2538.461090] el0t_64_sync_handler+0x68/0xbc\n[ 2538.461093] el0t_64_sync+0x1a8/0x1ac\n\n T1:\t\t\t\tT2:\n sd_remove\n del_gendisk\n __blk_mark_disk_dead\n blk_freeze_queue_start\n ++q-\u003emq_freeze_depth\n \t\t\t\tbdev_release\n \t\t\t\tmutex_lock(\u0026disk-\u003eopen_mutex)\n \t\t\t\tsd_release\n \t\t\t\tscsi_execute_cmd\n \t\t\t\tblk_queue_enter\n \t\t\t\twait_event(!q-\u003emq_freeze_depth)\n mutex_lock(\u0026disk-\u003eopen_mutex)\n\nSCSI does not set GD_OWNS_QUEUE, so QUEUE_FLAG_DYING is not set in\nthis scenario. This is a classic ABBA deadlock. To fix the deadlock,\nmake sure we don\u0027t try to acquire disk-\u003eopen_mutex after freezing\nthe queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42294",
"url": "https://www.suse.com/security/cve/CVE-2024-42294"
},
{
"category": "external",
"summary": "SUSE Bug 1229371 for CVE-2024-42294",
"url": "https://bugzilla.suse.com/1229371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42294"
},
{
"cve": "CVE-2024-42304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: make sure the first directory block is not a hole\n\nThe syzbot constructs a directory that has no dirblock but is non-inline,\ni.e. the first directory block is a hole. And no errors are reported when\ncreating files in this directory in the following flow.\n\n ext4_mknod\n ...\n ext4_add_entry\n // Read block 0\n ext4_read_dirblock(dir, block, DIRENT)\n bh = ext4_bread(NULL, inode, block, 0)\n if (!bh \u0026\u0026 (type == INDEX || type == DIRENT_HTREE))\n // The first directory block is a hole\n // But type == DIRENT, so no error is reported.\n\nAfter that, we get a directory block without \u0027.\u0027 and \u0027..\u0027 but with a valid\ndentry. This may cause some code that relies on dot or dotdot (such as\nmake_indexed_dir()) to crash.\n\nTherefore when ext4_read_dirblock() finds that the first directory block\nis a hole report that the filesystem is corrupted and return an error to\navoid loading corrupted data from disk causing something bad.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42304",
"url": "https://www.suse.com/security/cve/CVE-2024-42304"
},
{
"category": "external",
"summary": "SUSE Bug 1229364 for CVE-2024-42304",
"url": "https://bugzilla.suse.com/1229364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42304"
},
{
"cve": "CVE-2024-42305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check dot and dotdot of dx_root before making dir indexed\n\nSyzbot reports a issue as follows:\n============================================\nBUG: unable to handle page fault for address: ffffed11022e24fe\nPGD 23ffee067 P4D 23ffee067 PUD 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 5079 Comm: syz-executor306 Not tainted 6.10.0-rc5-g55027e689933 #0\nCall Trace:\n \u003cTASK\u003e\n make_indexed_dir+0xdaf/0x13c0 fs/ext4/namei.c:2341\n ext4_add_entry+0x222a/0x25d0 fs/ext4/namei.c:2451\n ext4_rename fs/ext4/namei.c:3936 [inline]\n ext4_rename2+0x26e5/0x4370 fs/ext4/namei.c:4214\n[...]\n============================================\n\nThe immediate cause of this problem is that there is only one valid dentry\nfor the block to be split during do_split, so split==0 results in out of\nbounds accesses to the map triggering the issue.\n\n do_split\n unsigned split\n dx_make_map\n count = 1\n split = count/2 = 0;\n continued = hash2 == map[split - 1].hash;\n ---\u003e map[4294967295]\n\nThe maximum length of a filename is 255 and the minimum block size is 1024,\nso it is always guaranteed that the number of entries is greater than or\nequal to 2 when do_split() is called.\n\nBut syzbot\u0027s crafted image has no dot and dotdot in dir, and the dentry\ndistribution in dirblock is as follows:\n\n bus dentry1 hole dentry2 free\n|xx--|xx-------------|...............|xx-------------|...............|\n0 12 (8+248)=256 268 256 524 (8+256)=264 788 236 1024\n\nSo when renaming dentry1 increases its name_len length by 1, neither hole\nnor free is sufficient to hold the new dentry, and make_indexed_dir() is\ncalled.\n\nIn make_indexed_dir() it is assumed that the first two entries of the\ndirblock must be dot and dotdot, so bus and dentry1 are left in dx_root\nbecause they are treated as dot and dotdot, and only dentry2 is moved\nto the new leaf block. That\u0027s why count is equal to 1.\n\nTherefore add the ext4_check_dx_root() helper function to add more sanity\nchecks to dot and dotdot before starting the conversion to avoid the above\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42305",
"url": "https://www.suse.com/security/cve/CVE-2024-42305"
},
{
"category": "external",
"summary": "SUSE Bug 1229363 for CVE-2024-42305",
"url": "https://bugzilla.suse.com/1229363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42305"
},
{
"cve": "CVE-2024-42306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42306",
"url": "https://www.suse.com/security/cve/CVE-2024-42306"
},
{
"category": "external",
"summary": "SUSE Bug 1229362 for CVE-2024-42306",
"url": "https://bugzilla.suse.com/1229362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-42306"
},
{
"cve": "CVE-2024-43828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix infinite loop when replaying fast_commit\n\nWhen doing fast_commit replay an infinite loop may occur due to an\nuninitialized extent_status struct. ext4_ext_determine_insert_hole() does\nnot detect the replay and calls ext4_es_find_extent_range(), which will\nreturn immediately without initializing the \u0027es\u0027 variable.\n\nBecause \u0027es\u0027 contains garbage, an integer overflow may happen causing an\ninfinite loop in this function, easily reproducible using fstest generic/039.\n\nThis commit fixes this issue by unconditionally initializing the structure\nin function ext4_es_find_extent_range().\n\nThanks to Zhang Yi, for figuring out the real problem!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43828",
"url": "https://www.suse.com/security/cve/CVE-2024-43828"
},
{
"category": "external",
"summary": "SUSE Bug 1229394 for CVE-2024-43828",
"url": "https://bugzilla.suse.com/1229394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43828"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix bogus checksum computation in udf_rename()\n\nSyzbot reports uninitialized memory access in udf_rename() when updating\nchecksum of \u0027..\u0027 directory entry of a moved directory. This is indeed\ntrue as we pass on-stack diriter.fi to the udf_update_tag() and because\nthat has only struct fileIdentDesc included in it and not the impUse or\nname fields, the checksumming function is going to checksum random stack\ncontents beyond the end of the structure. This is actually harmless\nbecause the following udf_fiiter_write_fi() will recompute the checksum\nfrom on-disk buffers where everything is properly included. So all that\nis needed is just removing the bogus calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43845",
"url": "https://www.suse.com/security/cve/CVE-2024-43845"
},
{
"category": "external",
"summary": "SUSE Bug 1229389 for CVE-2024-43845",
"url": "https://bugzilla.suse.com/1229389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43845"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43898"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43898",
"url": "https://www.suse.com/security/cve/CVE-2024-43898"
},
{
"category": "external",
"summary": "SUSE Bug 1229753 for CVE-2024-43898",
"url": "https://bugzilla.suse.com/1229753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43898"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Fix null-ptr-deref in reuseport_add_sock().\n\nsyzbot reported a null-ptr-deref while accessing sk2-\u003esk_reuseport_cb in\nreuseport_add_sock(). [0]\n\nThe repro first creates a listener with SO_REUSEPORT. Then, it creates\nanother listener on the same port and concurrently closes the first\nlistener.\n\nThe second listen() calls reuseport_add_sock() with the first listener as\nsk2, where sk2-\u003esk_reuseport_cb is not expected to be cleared concurrently,\nbut the close() does clear it by reuseport_detach_sock().\n\nThe problem is SCTP does not properly synchronise reuseport_alloc(),\nreuseport_add_sock(), and reuseport_detach_sock().\n\nThe caller of reuseport_alloc() and reuseport_{add,detach}_sock() must\nprovide synchronisation for sockets that are classified into the same\nreuseport group.\n\nOtherwise, such sockets form multiple identical reuseport groups, and\nall groups except one would be silently dead.\n\n 1. Two sockets call listen() concurrently\n 2. No socket in the same group found in sctp_ep_hashtable[]\n 3. Two sockets call reuseport_alloc() and form two reuseport groups\n 4. Only one group hit first in __sctp_rcv_lookup_endpoint() receives\n incoming packets\n\nAlso, the reported null-ptr-deref could occur.\n\nTCP/UDP guarantees that would not happen by holding the hash bucket lock.\n\nLet\u0027s apply the locking strategy to __sctp_hash_endpoint() and\n__sctp_unhash_endpoint().\n\n[0]:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\nCPU: 1 UID: 0 PID: 10230 Comm: syz-executor119 Not tainted 6.10.0-syzkaller-12585-g301927d2d2eb #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nRIP: 0010:reuseport_add_sock+0x27e/0x5e0 net/core/sock_reuseport.c:350\nCode: 00 0f b7 5d 00 bf 01 00 00 00 89 de e8 1b a4 ff f7 83 fb 01 0f 85 a3 01 00 00 e8 6d a0 ff f7 49 8d 7e 12 48 89 f8 48 c1 e8 03 \u003c42\u003e 0f b6 04 28 84 c0 0f 85 4b 02 00 00 41 0f b7 5e 12 49 8d 7e 14\nRSP: 0018:ffffc9000b947c98 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff8880252ddf98 RCX: ffff888079478000\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000012\nRBP: 0000000000000001 R08: ffffffff8993e18d R09: 1ffffffff1fef385\nR10: dffffc0000000000 R11: fffffbfff1fef386 R12: ffff8880252ddac0\nR13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000\nFS: 00007f24e45b96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffcced5f7b8 CR3: 00000000241be000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __sctp_hash_endpoint net/sctp/input.c:762 [inline]\n sctp_hash_endpoint+0x52a/0x600 net/sctp/input.c:790\n sctp_listen_start net/sctp/socket.c:8570 [inline]\n sctp_inet_listen+0x767/0xa20 net/sctp/socket.c:8625\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]\n __se_sys_listen net/socket.c:1900 [inline]\n __x64_sys_listen+0x5a/0x70 net/socket.c:1900\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f24e46039b9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f24e45b9228 EFLAGS: 00000246 ORIG_RAX: 0000000000000032\nRAX: ffffffffffffffda RBX: 00007f24e468e428 RCX: 00007f24e46039b9\nRDX: 00007f24e46039b9 RSI: 0000000000000003 RDI: 0000000000000004\nRBP: 00007f24e468e420 R08: 00007f24e45b96c0 R09: 00007f24e45b96c0\nR10: 00007f24e45b96c0 R11: 0000000000000246 R12: 00007f24e468e42c\nR13:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44935",
"url": "https://www.suse.com/security/cve/CVE-2024-44935"
},
{
"category": "external",
"summary": "SUSE Bug 1229810 for CVE-2024-44935",
"url": "https://bugzilla.suse.com/1229810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44935"
},
{
"cve": "CVE-2024-44944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use helper function to calculate expect ID\n\nDelete expectation path is missing a call to the nf_expect_get_id()\nhelper function to calculate the expectation ID, otherwise LSB of the\nexpectation object address is leaked to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44944",
"url": "https://www.suse.com/security/cve/CVE-2024-44944"
},
{
"category": "external",
"summary": "SUSE Bug 1229899 for CVE-2024-44944",
"url": "https://bugzilla.suse.com/1229899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44944"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix invalid FIFO access with special register set\n\nWhen enabling access to the special register set, Receiver time-out and\nRHR interrupts can happen. In this case, the IRQ handler will try to read\nfrom the FIFO thru the RHR register at address 0x00, but address 0x00 is\nmapped to DLL register, resulting in erroneous FIFO reading.\n\nCall graph example:\n sc16is7xx_startup(): entry\n sc16is7xx_ms_proc(): entry\n sc16is7xx_set_termios(): entry\n sc16is7xx_set_baud(): DLH/DLL = $009C --\u003e access special register set\n sc16is7xx_port_irq() entry --\u003e IIR is 0x0C\n sc16is7xx_handle_rx() entry\n sc16is7xx_fifo_read(): --\u003e unable to access FIFO (RHR) because it is\n mapped to DLL (LCR=LCR_CONF_MODE_A)\n sc16is7xx_set_baud(): exit --\u003e Restore access to general register set\n\nFix the problem by claiming the efr_lock mutex when accessing the Special\nregister set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44950",
"url": "https://www.suse.com/security/cve/CVE-2024-44950"
},
{
"category": "external",
"summary": "SUSE Bug 1230180 for CVE-2024-44950",
"url": "https://bugzilla.suse.com/1230180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44950"
},
{
"cve": "CVE-2024-44951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix TX fifo corruption\n\nSometimes, when a packet is received on channel A at almost the same time\nas a packet is about to be transmitted on channel B, we observe with a\nlogic analyzer that the received packet on channel A is transmitted on\nchannel B. In other words, the Tx buffer data on channel B is corrupted\nwith data from channel A.\n\nThe problem appeared since commit 4409df5866b7 (\"serial: sc16is7xx: change\nEFR lock to operate on each channels\"), which changed the EFR locking to\noperate on each channel instead of chip-wise.\n\nThis commit has introduced a regression, because the EFR lock is used not\nonly to protect the EFR registers access, but also, in a very obscure and\nundocumented way, to protect access to the data buffer, which is shared by\nthe Tx and Rx handlers, but also by each channel of the IC.\n\nFix this regression first by switching to kfifo_out_linear_ptr() in\nsc16is7xx_handle_tx() to eliminate the need for a shared Rx/Tx buffer.\n\nSecondly, replace the chip-wise Rx buffer with a separate Rx buffer for\neach channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44951",
"url": "https://www.suse.com/security/cve/CVE-2024-44951"
},
{
"category": "external",
"summary": "SUSE Bug 1230181 for CVE-2024-44951",
"url": "https://bugzilla.suse.com/1230181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44951"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UAF in ip6_xmit()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand the associated dst/idev could also have been freed.\n\nWe must use rcu_read_lock() to prevent a possible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44985",
"url": "https://www.suse.com/security/cve/CVE-2024-44985"
},
{
"category": "external",
"summary": "SUSE Bug 1230206 for CVE-2024-44985",
"url": "https://bugzilla.suse.com/1230206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44985"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can\u0027t dereference \"skb\" after calling vcc-\u003epush() because the skb\nis released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44998",
"url": "https://www.suse.com/security/cve/CVE-2024-44998"
},
{
"category": "external",
"summary": "SUSE Bug 1230171 for CVE-2024-44998",
"url": "https://bugzilla.suse.com/1230171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44998"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: Don\u0027t evict inode under the inode lru traversing context\n\nThe inode reclaiming process(See function prune_icache_sb) collects all\nreclaimable inodes and mark them with I_FREEING flag at first, at that\ntime, other processes will be stuck if they try getting these inodes\n(See function find_inode_fast), then the reclaiming process destroy the\ninodes by function dispose_list(). Some filesystems(eg. ext4 with\nea_inode feature, ubifs with xattr) may do inode lookup in the inode\nevicting callback function, if the inode lookup is operated under the\ninode lru traversing context, deadlock problems may happen.\n\nCase 1: In function ext4_evict_inode(), the ea inode lookup could happen\n if ea_inode feature is enabled, the lookup process will be stuck\n\tunder the evicting context like this:\n\n 1. File A has inode i_reg and an ea inode i_ea\n 2. getfattr(A, xattr_buf) // i_ea is added into lru // lru-\u003ei_ea\n 3. Then, following three processes running like this:\n\n PA PB\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // i_reg is added into lru, lru-\u003ei_ea-\u003ei_reg\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n i_ea-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(i_reg)\n spin_unlock(\u0026i_reg-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file A\n i_reg-\u003enlink = 0\n iput(i_reg) // i_reg-\u003enlink is 0, do evict\n ext4_evict_inode\n ext4_xattr_delete_inode\n ext4_xattr_inode_dec_ref_all\n ext4_xattr_inode_iget\n ext4_iget(i_ea-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(i_ea) ----\u2192 AA deadlock\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026i_ea-\u003ei_state)\n\nCase 2: In deleted inode writing function ubifs_jnl_write_inode(), file\n deleting process holds BASEHD\u0027s wbuf-\u003eio_mutex while getting the\n\txattr inode, which could race with inode reclaiming process(The\n reclaiming process could try locking BASEHD\u0027s wbuf-\u003eio_mutex in\n\tinode evicting function), then an ABBA deadlock problem would\n\thappen as following:\n\n 1. File A has inode ia and a xattr(with inode ixa), regular file B has\n inode ib and a xattr.\n 2. getfattr(A, xattr_buf) // ixa is added into lru // lru-\u003eixa\n 3. Then, following three processes running like this:\n\n PA PB PC\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // ib and ia are added into lru, lru-\u003eixa-\u003eib-\u003eia\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n ixa-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(ib)\n spin_unlock(\u0026ib-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file B\n ib-\u003enlink = 0\n rm file A\n iput(ia)\n ubifs_evict_inode(ia)\n ubifs_jnl_delete_inode(ia)\n ubifs_jnl_write_inode(ia)\n make_reservation(BASEHD) // Lock wbuf-\u003eio_mutex\n ubifs_iget(ixa-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(ixa)\n | iput(ib) // ib-\u003enlink is 0, do evict\n | ubifs_evict_inode\n | ubifs_jnl_delete_inode(ib)\n \u2193 ubifs_jnl_write_inode\n ABBA deadlock \u2190-----make_reservation(BASEHD)\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026ixa-\u003ei_state)\n\nFix the possible deadlock by using new inode state flag I_LRU_ISOLATING\nto pin the inode in memory while inode_lru_isolate(\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45003",
"url": "https://www.suse.com/security/cve/CVE-2024-45003"
},
{
"category": "external",
"summary": "SUSE Bug 1230245 for CVE-2024-45003",
"url": "https://bugzilla.suse.com/1230245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45003"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_25-default-1-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-source-6.4.0-150600.23.25.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:cluster-md-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:dlm-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:dtb-allwinner-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-altera-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amazon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-amlogic-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-apple-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-arm-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-broadcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-cavium-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-exynos-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-freescale-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-hisilicon-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-lg-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-marvell-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-mediatek-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-nvidia-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-qcom-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-renesas-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-rockchip-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-socionext-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-sprd-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:dtb-xilinx-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:gfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-64kb-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-debug-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-debug-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.aarch64",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.ppc64le",
"openSUSE Leap 15.6:kernel-default-base-rebuild-6.4.0-150600.23.25.1.150600.12.10.2.x86_64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-extra-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-default-optional-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-default-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-docs-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-docs-html-6.4.0-150600.23.25.2.noarch",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-kvmsmall-vdso-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-macros-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.aarch64",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.ppc64le",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.s390x",
"openSUSE Leap 15.6:kernel-obs-build-6.4.0-150600.23.25.2.x86_64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-obs-qa-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-source-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-source-vanilla-6.4.0-150600.23.25.1.noarch",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kernel-syms-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:kernel-zfcpdump-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:kselftests-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:ocfs2-kmp-default-6.4.0-150600.23.25.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-64kb-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.ppc64le",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.s390x",
"openSUSE Leap 15.6:reiserfs-kmp-default-6.4.0-150600.23.25.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T08:45:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2024:4376-1
Vulnerability from csaf_suse
Published
2024-12-18 15:03
Modified
2024-12-18 15:03
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560).
- CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959).
- CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590).
- CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).
- CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656).
- CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb->head (bsc#1224518).
- CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526).
- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).
- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).
- CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742).
- CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764).
- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).
- CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592).
- CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853).
- CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430).
- CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808).
- CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220).
- CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231).
- CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558).
- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).
- CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()&iput() (bsc#1231930).
- CVE-2024-47701: ext4: explicitly exit when ext4_find_inline_entry returns an error (bsc#1231920).
- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).
- CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187).
- CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272).
- CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371).
- CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224)
- CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387).
- CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165).
- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).
- CVE-2024-49968: ext4: fix error message when rejecting the default hash (bsc#1232264).
- CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096).
- CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483).
- CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value (bsc#1232318).
- CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520).
- CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500).
- CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860).
- CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877).
- CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881).
- CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884).
- CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885).
- CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919).
- CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928).
- CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907).
- CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905).
- CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890).
- CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888).
- CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935).
- CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056).
- CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067).
- CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061).
- CVE-2024-50154: tcp: Fix use-after-free of nreq in reqsk_timer_handler() (bsc#1233070).
- CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049).
- CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057).
- CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129).
- CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135).
- CVE-2024-50186: net: explicitly clear the sk pointer, when pf->create fails (bsc#1233110).
- CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107).
- CVE-2024-50192: irqchip/gic-v4: Correctly deal with set_affinity on lazily-mapped VPEs (bsc#1233106).
- CVE-2024-50195: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() (bsc#1233103).
- CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113).
- CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293).
- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117).
- CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205).
- CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206).
- CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214).
- CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253).
- CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233453).
- CVE-2024-50267: USB: serial: io_edgeport: fix use after free in debug printk (bsc#1233456).
- CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460).
- CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462).
- CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478).
- CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484).
- CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487).
- CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548).
- CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552).
- CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555).
- CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557).
- CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561).
- CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570).
- CVE-2024-53088: i40e: fix race condition by adding filter's intermediate sync state (bsc#1233580).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).
- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).
The following non-security bugs were fixed:
- Drop OCFS2 patch causing a regression (bsc#1233255).
- Fix regression on AMDGPU driver (bsc#1233134).
- Removed the duplicated check of static_assert(sizeof(struct work_struct) >= sizeof(struct rcu_head)).
- Revert 'cgroup: Fix memory leak caused by missing cgroup_bpf_offline' (bsc#1234108).
- Revert 'ixgbe: Manual AN-37 for troublesome link partners for X550 SFI' (git-fixes).
- Revert 'mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K' (git-fixes).
- Revert 'usb: gadget: composite: fix OS descriptors w_value logic' (git-fixes).
- Update config files (bsc#1218644).
- Update config files. Enabled IDPF for ARM64 (bsc#1221309)
- acpi: CPPC: Fix _CPC register setting issue (git-fixes).
- acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).
- acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).
- acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).
- ad7780: fix division by zero in ad7780_write_raw() (git-fixes).
- add bugreference to a hv_netvsc patch (bsc#1232413).
- alsa: 6fire: Release resources at card release (git-fixes).
- alsa: ac97: bus: Fix the mistake in the comment (git-fixes).
- alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes).
- alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes).
- alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).
- alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).
- alsa: hda/realtek: Update ALC225 depop procedure (git-fixes).
- alsa: hda/realtek: Update ALC256 depop procedure (git-fixes).
- alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes).
- alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes).
- alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).
- alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes).
- amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes).
- arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)
- arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)
- arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes)
- asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes).
- asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes).
- asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).
- asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).
- asoc: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes).
- asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).
- asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes).
- blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528).
- block: Avoid leaking hctx->nr_active counter on batched completion (bsc#1231923).
- bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes).
- bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).
- bnxt_en: Fix the PCI-AER routines (git-fixes).
- bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes).
- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).
- bnxt_en: Wait for FLR to complete during probe (git-fixes).
- bnxt_en: refactor reset close code (git-fixes).
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).
- can: c_can: fix {rx,tx}_errors statistics (git-fixes).
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108).
- chtls: fix tp->rcv_tstamp initialization (git-fixes).
- comedi: Flush partial mappings in error case (git-fixes).
- crypto: bcm - add error check in the ahash_hmac_init function (git-fixes).
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes).
- crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes).
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes).
- crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes).
- crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes).
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes).
- cxgb4: Properly lock TX queue for the selftest (git-fixes).
- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).
- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).
- drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes).
- drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes).
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes).
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes).
- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes).
- drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes).
- drm/bridge: tc358767: Fix link properties discovery (git-fixes).
- drm/bridge: tc358768: Fix DSI command tx (git-fixes).
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes).
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes).
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes).
- drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes).
- drm/omap: Fix possible NULL dereference (git-fixes).
- drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes).
- drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes).
- drm/sti: avoid potential dereference of error pointers (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes).
- drm/v3d: Address race-condition in MMU flush (git-fixes).
- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).
- drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes).
- drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes).
- drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes).
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes).
- e1000e: Fix S0ix residency on corporate systems (git-fixes).
- efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465).
- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).
- firmware: google: Unregister driver_info on failure (git-fixes).
- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).
- goldfish: Fix unused const variable 'goldfish_pipe_acpi_match' (git-fixes).
- gve: Fix XDP TX completion handling when counters overflow (git-fixes).
- gve: Fix an edge case for TSO skb validity check (git-fixes).
- gve: Fix skb truesize underestimation (git-fixes).
- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).
- hid: core: zero-initialize the report buffer (git-fixes).
- hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes).
- hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes).
- hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes).
- hid: multitouch: Add support for B2402FVA track point (stable-fixes).
- hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes).
- hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes).
- hid: wacom: fix when get product name maybe null pointer (git-fixes).
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (git-fixes).
- hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes).
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes).
- i40e: Fix XDP program unloading while removing the driver (git-fixes).
- i40e: Fix filter input checks to prevent config with invalid values (git-fixes).
- i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes).
- i40e: Report MFS in decimal base instead of hex (git-fixes).
- i40e: Restore VF MSI-X state during PCI reset (git-fixes).
- i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes).
- i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes).
- i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes).
- i40e: take into account XDP Tx queues when stopping rings (git-fixes).
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).
- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).
- iavf: Fix promiscuous mode configuration flow messages (git-fixes).
- iavf: Introduce new state machines for flow director (git-fixes).
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes).
- iavf: fix FDIR rule fields masks validation (git-fixes).
- iavf: in iavf_down, disable queues when removing the driver (git-fixes).
- iavf: initialize waitqueues before starting watchdog_task (git-fixes).
- iavf: send VLAN offloading caps once after VFR (git-fixes).
- iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes).
- ibmvnic: Do partial reset on login failure (bsc#1233150).
- ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150).
- ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150).
- ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150).
- ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150).
- ice: Block switchdev mode when ADQ is active and vice versa (git-fixes).
- ice: Fix NULL pointer deref during VF reset (git-fixes).
- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).
- ice: Fix link_down_on_close message (git-fixes).
- ice: Fix netif_is_ice() in Safe Mode (git-fixes).
- ice: Interpret .set_channels() input differently (git-fixes).
- ice: Shut down VSI with 'link-down-on-close' enabled (git-fixes).
- ice: avoid executing commands on other ports when driving sync (git-fixes).
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: fix ICE_LAST_OFFSET formula (git-fixes).
- ice: fix VLAN replay after reset (git-fixes).
- ice: fix accounting for filters shared by multiple VSIs (git-fixes).
- ice: fix accounting if a VLAN already exists (git-fixes).
- ice: fix over-shifted variable (git-fixes).
- ice: fix receive buffer size miscalculation (git-fixes).
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes).
- ice: reset first in crash dump kernels (git-fixes).
- ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes).
- ice: tc: allow zero flags in parsing tc flower (git-fixes).
- ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes).
- idpf: Interpret .set_channels() input differently (git-fixes).
- idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes).
- idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes).
- idpf: disable local BH when scheduling napi for marker packets (git-fixes).
- idpf: distinguish vports by the dev_port attribute (git-fixes).
- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).
- idpf: fix UAFs when destroying the queues (git-fixes).
- idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes).
- idpf: fix memleak in vport interrupt configuration (git-fixes).
- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).
- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).
- igb: Fix missing time sync events (git-fixes).
- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).
- igb: extend PTP timestamp adjustments to i211 (git-fixes).
- igc: Check VLAN EtherType mask (git-fixes).
- igc: Check VLAN TCI mask (git-fixes).
- igc: Fix hicredit calculation (git-fixes).
- igc: Fix missing time sync events (git-fixes).
- igc: Remove temporary workaround (git-fixes).
- igc: Report VLAN EtherType matching back to user (git-fixes).
- igc: Unlock on error in igc_io_resume() (git-fixes).
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).
- iio: adc: ad7606: Fix typo in the driver name (git-fixes).
- iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes).
- iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes).
- iio: light: veml6030: fix microlux value calculation (git-fixes).
- initramfs: avoid filename buffer overrun (bsc#1232436).
- input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes).
- input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes).
- input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes).
- irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes).
- irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes).
- ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes).
- ixgbe: fix crash with empty VF macvlan list (git-fixes).
- ixgbe: fix timestamp configuration code (git-fixes).
- ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes).
- kABI: Restore exported __arm_smccc_sve_check (git-fixes)
- kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644).
- kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes)
- kexec: fix a memory leak in crash_shrink_memory() (git-fixes).
- kvm: PPC: Book3S HV: remove unused varible (bsc#1194869).
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).
- media: adv7604: prevent underflow condition when reporting colorspace (git-fixes).
- media: cx24116: prevent overflows on SNR calculus (git-fixes).
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes).
- media: dvb-usb-v2: af9035: fix missing unlock (git-fixes).
- media: dvb_frontend: do not play tricks with underflow values (git-fixes).
- media: dvbdev: prevent the risk of out of memory access (git-fixes).
- media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes).
- media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes).
- media: stb0899_algo: initialize cfr before using it (git-fixes).
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes).
- media: v4l2-tpg: prevent the risk of a division by zero (git-fixes).
- mei: use kvmalloc for read buffer (git-fixes).
- misc: apds990x: Fix missing pm_runtime_disable() (git-fixes).
- mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012).
- mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646).
- modpost: remove incorrect code in do_eisa_entry() (git-fixes).
- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).
- net/mlx5: Added cond_resched() to crdump collection (git-fixes).
- net/mlx5: Allow 0 for total host VFs (git-fixes).
- net/mlx5: Correctly compare pkt reformat ids (git-fixes).
- net/mlx5: DR, Can't go to uplink vport on RX rule (git-fixes).
- net/mlx5: DR, Use the right GVMI number for drop action (git-fixes).
- net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes).
- net/mlx5: Drain health before unregistering devlink (git-fixes).
- net/mlx5: E-switch, register event handler before arming the event (git-fixes).
- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).
- net/mlx5: Fix fw tracer first block check (git-fixes).
- net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes).
- net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes).
- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).
- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).
- net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes).
- net/mlx5: Skip clock update work when device is in error state (git-fixes).
- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).
- net/mlx5: Update the list of the PCI supported devices (git-fixes).
- net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes).
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes).
- net/mlx5: Use recovery timeout on sync reset flow (git-fixes).
- net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes).
- net/mlx5: fs, lock FTE when checking if active (git-fixes).
- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).
- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).
- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).
- net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes).
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes).
- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).
- net/mlx5e: Do not offload internal port if filter device is out device (git-fixes).
- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).
- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).
- net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes).
- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).
- net/mlx5e: Fix pedit endianness (git-fixes).
- net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes).
- net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes).
- net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes).
- net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes).
- net/mlx5e: Reduce the size of icosq_str (git-fixes).
- net/mlx5e: Take state lock during tx timeout reporter (git-fixes).
- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).
- net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes).
- net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes).
- net/mlx5e: fix double free of encap_header (git-fixes).
- net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes).
- net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes).
- net: ena: Fix potential sign extension issue (git-fixes).
- net: ena: Remove ena_select_queue (git-fixes).
- net: ena: Wrong missing IO completions check order (git-fixes).
- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).
- net: relax socket state check at accept time (git-fixes).
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes).
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes).
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes).
- net: usb: usbnet: fix race in probe failure (git-fixes).
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes).
- nvme-fabrics: fix kernel crash while shutting down controller (git-fixes).
- nvme-pci: fix freeing of the HMB descriptor table (git-fixes).
- nvme-pci: reverse request order in nvme_queue_rqs (git-fixes).
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes).
- pci: Add T_PVPERL macro (git-fixes).
- pci: Fix reset_method_store() memory leak (git-fixes).
- pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes).
- pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes).
- pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes).
- pci: keystone: Set mode as Root Complex for 'ti,keystone-pcie' compatible (git-fixes).
- pci: rockchip-ep: Fix address translation unit programming (git-fixes).
- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes).
- platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes).
- platform/x86: dell-sysman: add support for alienware products (stable-fixes).
- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098).
- power: supply: bq27xxx: Fix registers of bq27426 (git-fixes).
- power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes).
- powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869).
- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).
- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).
- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).
- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).
- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).
- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).
- powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869).
- qed: avoid truncating work queue length (git-fixes).
- rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes)
- rdma/hns: Add clear_hem return value to log (git-fixes)
- rdma/hns: Add mutex_destroy() (git-fixes)
- rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes)
- rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes)
- rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes)
- rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes)
- rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes)
- rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes)
- rdma/hns: Remove unnecessary QP type checks (git-fixes)
- rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes)
- rdma/hns: Use macro instead of magic number (git-fixes)
- rdma/mlx5: Move events notifier registration to be after device registration (git-fixes)
- rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).
- rdma/rxe: Fix the qp flush warnings in req (git-fixes)
- rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes)
- rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644)
- rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes).
- rtc: abx80x: Fix WDT bit position of the status register (git-fixes).
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes).
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241).
- scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241).
- scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241).
- scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241).
- scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241).
- scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241).
- scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241).
- scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241).
- scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241).
- scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241).
- scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241).
- scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes).
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes).
- security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes).
- serial: 8250: omap: Move pm_runtime_get_sync (git-fixes).
- sfc: Check firmware supports Ethernet PTP filter (git-fixes).
- sfc: do not unregister flow_indr if it was never registered (git-fixes).
- sfc: fix a double-free bug in efx_probe_filters (git-fixes).
- signal: Replace BUG_ON()s (bsc#1234093).
- spi: Fix acpi deferred irq probe (git-fixes).
- spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes).
- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).
- thermal: core: Initialize thermal zones before registering them (git-fixes).
- thermal: intel: int340x: processor: Fix warning during module unload (git-fixes).
- tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes).
- tun: Fix xdp_rxq_info's queue_index when detaching (git-fixes).
- tun: prevent negative ifindex (git-fixes).
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460).
- usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes).
- usb: chaoskey: fail open after removal (git-fixes).
- usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes).
- usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes).
- usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes).
- usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes).
- usb: musb: sunxi: Fix accessing an released usb phy (git-fixes).
- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).
- usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes).
- usb: serial: io_edgeport: fix use after free in debug printk (git-fixes).
- usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes).
- usb: serial: option: add Quectel RG650V (stable-fixes).
- usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes).
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes).
- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes).
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes).
- usb: yurex: make waiting on yurex_write interruptible (git-fixes).
- usbip: tools: Fix detach_port() invalid port error path (git-fixes).
- vdpa/mlx5: preserve CVQ vringh index (git-fixes).
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).
- watchdog: rti: of: honor timeout-sec property (git-fixes).
- wifi: ath10k: Fix memory leak in management tx (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes).
- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes).
- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).
- wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes).
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).
- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes).
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes).
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- x86/kvm: fix is_stale_page_fault() (bsc#1221333).
- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).
- xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes).
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).
Patchnames
SUSE-2024-4376,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-4376,openSUSE-SLE-15.5-2024-4376
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560).\n- CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959).\n- CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590).\n- CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).\n- CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656).\n- CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb-\u003ehead (bsc#1224518).\n- CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526).\n- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).\n- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).\n- CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742).\n- CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764).\n- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).\n- CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592).\n- CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853).\n- CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430).\n- CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808).\n- CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220).\n- CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231).\n- CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558).\n- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).\n- CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()\u0026iput() (bsc#1231930).\n- CVE-2024-47701: ext4: explicitly exit when ext4_find_inline_entry returns an error (bsc#1231920).\n- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).\n- CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187).\n- CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272).\n- CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371).\n- CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224)\n- CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387).\n- CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165).\n- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).\n- CVE-2024-49968: ext4: fix error message when rejecting the default hash (bsc#1232264).\n- CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096).\n- CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483).\n- CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value (bsc#1232318).\n- CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520).\n- CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500).\n- CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860).\n- CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877).\n- CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881).\n- CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884).\n- CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885).\n- CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919).\n- CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928).\n- CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907).\n- CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905).\n- CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890).\n- CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888).\n- CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935).\n- CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056).\n- CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067).\n- CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061).\n- CVE-2024-50154: tcp: Fix use-after-free of nreq in reqsk_timer_handler() (bsc#1233070).\n- CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049).\n- CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057).\n- CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129).\n- CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135).\n- CVE-2024-50186: net: explicitly clear the sk pointer, when pf-\u003ecreate fails (bsc#1233110).\n- CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107).\n- CVE-2024-50192: irqchip/gic-v4: Correctly deal with set_affinity on lazily-mapped VPEs (bsc#1233106).\n- CVE-2024-50195: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() (bsc#1233103).\n- CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113).\n- CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293).\n- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117).\n- CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205).\n- CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206).\n- CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214).\n- CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253).\n- CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans (bsc#1233453).\n- CVE-2024-50267: USB: serial: io_edgeport: fix use after free in debug printk (bsc#1233456).\n- CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460).\n- CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462).\n- CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463).\n- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).\n- CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478).\n- CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484).\n- CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487).\n- CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548).\n- CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552).\n- CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555).\n- CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557).\n- CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561).\n- CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570).\n- CVE-2024-53088: i40e: fix race condition by adding filter\u0027s intermediate sync state (bsc#1233580).\n- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).\n- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).\n\nThe following non-security bugs were fixed:\n\n- Drop OCFS2 patch causing a regression (bsc#1233255).\n- Fix regression on AMDGPU driver (bsc#1233134).\n- Removed the duplicated check of static_assert(sizeof(struct work_struct) \u003e= sizeof(struct rcu_head)).\n- Revert \u0027cgroup: Fix memory leak caused by missing cgroup_bpf_offline\u0027 (bsc#1234108).\n- Revert \u0027ixgbe: Manual AN-37 for troublesome link partners for X550 SFI\u0027 (git-fixes).\n- Revert \u0027mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K\u0027 (git-fixes).\n- Revert \u0027usb: gadget: composite: fix OS descriptors w_value logic\u0027 (git-fixes).\n- Update config files (bsc#1218644). \n- Update config files. Enabled IDPF for ARM64 (bsc#1221309)\n- acpi: CPPC: Fix _CPC register setting issue (git-fixes).\n- acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).\n- acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).\n- acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).\n- ad7780: fix division by zero in ad7780_write_raw() (git-fixes).\n- add bugreference to a hv_netvsc patch (bsc#1232413).\n- alsa: 6fire: Release resources at card release (git-fixes).\n- alsa: ac97: bus: Fix the mistake in the comment (git-fixes).\n- alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes).\n- alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes).\n- alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).\n- alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).\n- alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).\n- alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).\n- alsa: hda/realtek: Update ALC225 depop procedure (git-fixes).\n- alsa: hda/realtek: Update ALC256 depop procedure (git-fixes).\n- alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes).\n- alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes).\n- alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).\n- alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes).\n- amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes).\n- arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes)\n- arm64: Force position-independent veneers (git-fixes).\n- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).\n- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)\n- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)\n- arm64: smccc: replace custom COUNT_ARGS() \u0026 CONCATENATE() (git-fixes)\n- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)\n- arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes)\n- asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes).\n- asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes).\n- asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).\n- asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).\n- asoc: fsl_sai: Enable \u0027FIFO continue on error\u0027 FCONT bit (stable-fixes).\n- asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).\n- asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes).\n- blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528).\n- block: Avoid leaking hctx-\u003enr_active counter on batched completion (bsc#1231923).\n- bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes).\n- bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).\n- bnxt_en: Fix the PCI-AER routines (git-fixes).\n- bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes).\n- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).\n- bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes).\n- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).\n- bnxt_en: Wait for FLR to complete during probe (git-fixes).\n- bnxt_en: refactor reset close code (git-fixes).\n- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).\n- can: c_can: fix {rx,tx}_errors statistics (git-fixes).\n- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).\n- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).\n- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).\n- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).\n- cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108).\n- chtls: fix tp-\u003ercv_tstamp initialization (git-fixes).\n- comedi: Flush partial mappings in error case (git-fixes).\n- crypto: bcm - add error check in the ahash_hmac_init function (git-fixes).\n- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes).\n- crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes).\n- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes).\n- crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes).\n- crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes).\n- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes).\n- cxgb4: Properly lock TX queue for the selftest (git-fixes).\n- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).\n- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).\n- drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes).\n- drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes).\n- drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes).\n- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes).\n- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes).\n- drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes).\n- drm/bridge: tc358767: Fix link properties discovery (git-fixes).\n- drm/bridge: tc358768: Fix DSI command tx (git-fixes).\n- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes).\n- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes).\n- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes).\n- drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes).\n- drm/omap: Fix possible NULL dereference (git-fixes).\n- drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes).\n- drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes).\n- drm/sti: avoid potential dereference of error pointers (git-fixes).\n- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes).\n- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes).\n- drm/v3d: Address race-condition in MMU flush (git-fixes).\n- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).\n- drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes).\n- drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes).\n- drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes).\n- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes).\n- e1000e: Fix S0ix residency on corporate systems (git-fixes).\n- efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465).\n- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).\n- firmware: google: Unregister driver_info on failure (git-fixes).\n- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).\n- goldfish: Fix unused const variable \u0027goldfish_pipe_acpi_match\u0027 (git-fixes).\n- gve: Fix XDP TX completion handling when counters overflow (git-fixes).\n- gve: Fix an edge case for TSO skb validity check (git-fixes).\n- gve: Fix skb truesize underestimation (git-fixes).\n- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).\n- hid: core: zero-initialize the report buffer (git-fixes).\n- hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes).\n- hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes).\n- hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes).\n- hid: multitouch: Add support for B2402FVA track point (stable-fixes).\n- hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes).\n- hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes).\n- hid: wacom: fix when get product name maybe null pointer (git-fixes).\n- hv_sock: Initializing vsk-\u003etrans to NULL to prevent a dangling pointer (git-fixes).\n- hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes).\n- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes).\n- i40e: Fix XDP program unloading while removing the driver (git-fixes).\n- i40e: Fix filter input checks to prevent config with invalid values (git-fixes).\n- i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes).\n- i40e: Report MFS in decimal base instead of hex (git-fixes).\n- i40e: Restore VF MSI-X state during PCI reset (git-fixes).\n- i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes).\n- i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes).\n- i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes).\n- i40e: take into account XDP Tx queues when stopping rings (git-fixes).\n- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).\n- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).\n- iavf: Fix promiscuous mode configuration flow messages (git-fixes).\n- iavf: Introduce new state machines for flow director (git-fixes).\n- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes).\n- iavf: fix FDIR rule fields masks validation (git-fixes).\n- iavf: in iavf_down, disable queues when removing the driver (git-fixes).\n- iavf: initialize waitqueues before starting watchdog_task (git-fixes).\n- iavf: send VLAN offloading caps once after VFR (git-fixes).\n- iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes).\n- ibmvnic: Do partial reset on login failure (bsc#1233150).\n- ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150).\n- ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150).\n- ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150).\n- ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150).\n- ice: Block switchdev mode when ADQ is active and vice versa (git-fixes).\n- ice: Fix NULL pointer deref during VF reset (git-fixes).\n- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).\n- ice: Fix link_down_on_close message (git-fixes).\n- ice: Fix netif_is_ice() in Safe Mode (git-fixes).\n- ice: Interpret .set_channels() input differently (git-fixes).\n- ice: Shut down VSI with \u0027link-down-on-close\u0027 enabled (git-fixes).\n- ice: avoid executing commands on other ports when driving sync (git-fixes).\n- ice: change q_index variable type to s16 to store -1 value (git-fixes).\n- ice: fix ICE_LAST_OFFSET formula (git-fixes).\n- ice: fix VLAN replay after reset (git-fixes).\n- ice: fix accounting for filters shared by multiple VSIs (git-fixes).\n- ice: fix accounting if a VLAN already exists (git-fixes).\n- ice: fix over-shifted variable (git-fixes).\n- ice: fix receive buffer size miscalculation (git-fixes).\n- ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes).\n- ice: reset first in crash dump kernels (git-fixes).\n- ice: respect netif readiness in AF_XDP ZC related ndo\u0027s (git-fixes).\n- ice: tc: allow zero flags in parsing tc flower (git-fixes).\n- ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes).\n- idpf: Interpret .set_channels() input differently (git-fixes).\n- idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes).\n- idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes).\n- idpf: disable local BH when scheduling napi for marker packets (git-fixes).\n- idpf: distinguish vports by the dev_port attribute (git-fixes).\n- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).\n- idpf: fix UAFs when destroying the queues (git-fixes).\n- idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes).\n- idpf: fix memleak in vport interrupt configuration (git-fixes).\n- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).\n- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).\n- igb: Fix missing time sync events (git-fixes).\n- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).\n- igb: extend PTP timestamp adjustments to i211 (git-fixes).\n- igc: Check VLAN EtherType mask (git-fixes).\n- igc: Check VLAN TCI mask (git-fixes).\n- igc: Fix hicredit calculation (git-fixes).\n- igc: Fix missing time sync events (git-fixes).\n- igc: Remove temporary workaround (git-fixes).\n- igc: Report VLAN EtherType matching back to user (git-fixes).\n- igc: Unlock on error in igc_io_resume() (git-fixes).\n- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).\n- iio: adc: ad7606: Fix typo in the driver name (git-fixes).\n- iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes).\n- iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes).\n- iio: light: veml6030: fix microlux value calculation (git-fixes).\n- initramfs: avoid filename buffer overrun (bsc#1232436).\n- input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes).\n- input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes).\n- input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes).\n- input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes).\n- input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes).\n- irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes).\n- irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes).\n- ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes).\n- ixgbe: fix crash with empty VF macvlan list (git-fixes).\n- ixgbe: fix timestamp configuration code (git-fixes).\n- ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes).\n- kABI: Restore exported __arm_smccc_sve_check (git-fixes)\n- kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644).\n- kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes)\n- kexec: fix a memory leak in crash_shrink_memory() (git-fixes).\n- kvm: PPC: Book3S HV: remove unused varible (bsc#1194869).\n- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).\n- media: adv7604: prevent underflow condition when reporting colorspace (git-fixes).\n- media: cx24116: prevent overflows on SNR calculus (git-fixes).\n- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes).\n- media: dvb-usb-v2: af9035: fix missing unlock (git-fixes).\n- media: dvb_frontend: do not play tricks with underflow values (git-fixes).\n- media: dvbdev: prevent the risk of out of memory access (git-fixes).\n- media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes).\n- media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes).\n- media: stb0899_algo: initialize cfr before using it (git-fixes).\n- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes).\n- media: v4l2-tpg: prevent the risk of a division by zero (git-fixes).\n- mei: use kvmalloc for read buffer (git-fixes).\n- misc: apds990x: Fix missing pm_runtime_disable() (git-fixes).\n- mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012).\n- mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646).\n- modpost: remove incorrect code in do_eisa_entry() (git-fixes).\n- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).\n- net/mlx5: Added cond_resched() to crdump collection (git-fixes).\n- net/mlx5: Allow 0 for total host VFs (git-fixes).\n- net/mlx5: Correctly compare pkt reformat ids (git-fixes).\n- net/mlx5: DR, Can\u0027t go to uplink vport on RX rule (git-fixes).\n- net/mlx5: DR, Use the right GVMI number for drop action (git-fixes).\n- net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes).\n- net/mlx5: Drain health before unregistering devlink (git-fixes).\n- net/mlx5: E-switch, register event handler before arming the event (git-fixes).\n- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).\n- net/mlx5: Fix fw tracer first block check (git-fixes).\n- net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes).\n- net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes).\n- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).\n- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).\n- net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes).\n- net/mlx5: Skip clock update work when device is in error state (git-fixes).\n- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).\n- net/mlx5: Update the list of the PCI supported devices (git-fixes).\n- net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes).\n- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes).\n- net/mlx5: Use recovery timeout on sync reset flow (git-fixes).\n- net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes).\n- net/mlx5: fs, lock FTE when checking if active (git-fixes).\n- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).\n- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).\n- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).\n- net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes).\n- net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes).\n- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).\n- net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes).\n- net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes).\n- net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes).\n- net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes).\n- net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes).\n- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).\n- net/mlx5e: Do not offload internal port if filter device is out device (git-fixes).\n- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).\n- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).\n- net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes).\n- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).\n- net/mlx5e: Fix pedit endianness (git-fixes).\n- net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes).\n- net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes).\n- net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes).\n- net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes).\n- net/mlx5e: Reduce the size of icosq_str (git-fixes).\n- net/mlx5e: Take state lock during tx timeout reporter (git-fixes).\n- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).\n- net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes).\n- net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes).\n- net/mlx5e: fix double free of encap_header (git-fixes).\n- net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes).\n- net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes).\n- net: ena: Fix potential sign extension issue (git-fixes).\n- net: ena: Remove ena_select_queue (git-fixes).\n- net: ena: Wrong missing IO completions check order (git-fixes).\n- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).\n- net: relax socket state check at accept time (git-fixes).\n- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes).\n- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes).\n- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes).\n- net: usb: usbnet: fix race in probe failure (git-fixes).\n- nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes).\n- nvme-fabrics: fix kernel crash while shutting down controller (git-fixes).\n- nvme-pci: fix freeing of the HMB descriptor table (git-fixes).\n- nvme-pci: reverse request order in nvme_queue_rqs (git-fixes).\n- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes).\n- pci: Add T_PVPERL macro (git-fixes).\n- pci: Fix reset_method_store() memory leak (git-fixes).\n- pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes).\n- pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes).\n- pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes).\n- pci: keystone: Set mode as Root Complex for \u0027ti,keystone-pcie\u0027 compatible (git-fixes).\n- pci: rockchip-ep: Fix address translation unit programming (git-fixes).\n- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).\n- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes).\n- platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes).\n- platform/x86: dell-sysman: add support for alienware products (stable-fixes).\n- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).\n- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098).\n- power: supply: bq27xxx: Fix registers of bq27426 (git-fixes).\n- power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes).\n- powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869).\n- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).\n- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).\n- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).\n- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).\n- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).\n- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).\n- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).\n- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).\n- powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869).\n- qed: avoid truncating work queue length (git-fixes).\n- rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes)\n- rdma/hns: Add clear_hem return value to log (git-fixes)\n- rdma/hns: Add mutex_destroy() (git-fixes)\n- rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes)\n- rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes)\n- rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes)\n- rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes)\n- rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes)\n- rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes)\n- rdma/hns: Remove unnecessary QP type checks (git-fixes)\n- rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes)\n- rdma/hns: Use macro instead of magic number (git-fixes)\n- rdma/mlx5: Move events notifier registration to be after device registration (git-fixes)\n- rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).\n- rdma/rxe: Fix the qp flush warnings in req (git-fixes)\n- rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes)\n- rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644)\n- rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes).\n- rtc: abx80x: Fix WDT bit position of the status register (git-fixes).\n- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes).\n- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241).\n- scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241).\n- scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241).\n- scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241).\n- scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241).\n- scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241).\n- scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241).\n- scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241).\n- scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241).\n- scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241).\n- scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241).\n- scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes).\n- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes).\n- security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes).\n- serial: 8250: omap: Move pm_runtime_get_sync (git-fixes).\n- sfc: Check firmware supports Ethernet PTP filter (git-fixes).\n- sfc: do not unregister flow_indr if it was never registered (git-fixes).\n- sfc: fix a double-free bug in efx_probe_filters (git-fixes).\n- signal: Replace BUG_ON()s (bsc#1234093).\n- spi: Fix acpi deferred irq probe (git-fixes).\n- spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes).\n- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).\n- thermal: core: Initialize thermal zones before registering them (git-fixes).\n- thermal: intel: int340x: processor: Fix warning during module unload (git-fixes).\n- tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes).\n- tun: Fix xdp_rxq_info\u0027s queue_index when detaching (git-fixes).\n- tun: prevent negative ifindex (git-fixes).\n- ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460).\n- usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes).\n- usb: chaoskey: fail open after removal (git-fixes).\n- usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes).\n- usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes).\n- usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes).\n- usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes).\n- usb: musb: sunxi: Fix accessing an released usb phy (git-fixes).\n- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).\n- usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes).\n- usb: serial: io_edgeport: fix use after free in debug printk (git-fixes).\n- usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes).\n- usb: serial: option: add Quectel RG650V (stable-fixes).\n- usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes).\n- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes).\n- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).\n- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes).\n- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes).\n- usb: yurex: make waiting on yurex_write interruptible (git-fixes).\n- usbip: tools: Fix detach_port() invalid port error path (git-fixes).\n- vdpa/mlx5: preserve CVQ vringh index (git-fixes).\n- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).\n- watchdog: rti: of: honor timeout-sec property (git-fixes).\n- wifi: ath10k: Fix memory leak in management tx (git-fixes).\n- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes).\n- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes).\n- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).\n- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes).\n- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).\n- wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes).\n- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).\n- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes).\n- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).\n- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).\n- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes).\n- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- x86/kvm: fix is_stale_page_fault() (bsc#1221333).\n- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).\n- xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes).\n- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-4376,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-4376,openSUSE-SLE-15.5-2024-4376",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_4376-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:4376-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20244376-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:4376-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-December/020028.html"
},
{
"category": "self",
"summary": "SUSE Bug 1082555",
"url": "https://bugzilla.suse.com/1082555"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1218644",
"url": "https://bugzilla.suse.com/1218644"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221309",
"url": "https://bugzilla.suse.com/1221309"
},
{
"category": "self",
"summary": "SUSE Bug 1221333",
"url": "https://bugzilla.suse.com/1221333"
},
{
"category": "self",
"summary": "SUSE Bug 1222364",
"url": "https://bugzilla.suse.com/1222364"
},
{
"category": "self",
"summary": "SUSE Bug 1222590",
"url": "https://bugzilla.suse.com/1222590"
},
{
"category": "self",
"summary": "SUSE Bug 1223202",
"url": "https://bugzilla.suse.com/1223202"
},
{
"category": "self",
"summary": "SUSE Bug 1223656",
"url": "https://bugzilla.suse.com/1223656"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1223919",
"url": "https://bugzilla.suse.com/1223919"
},
{
"category": "self",
"summary": "SUSE Bug 1223942",
"url": "https://bugzilla.suse.com/1223942"
},
{
"category": "self",
"summary": "SUSE Bug 1224518",
"url": "https://bugzilla.suse.com/1224518"
},
{
"category": "self",
"summary": "SUSE Bug 1224526",
"url": "https://bugzilla.suse.com/1224526"
},
{
"category": "self",
"summary": "SUSE Bug 1224574",
"url": "https://bugzilla.suse.com/1224574"
},
{
"category": "self",
"summary": "SUSE Bug 1225725",
"url": "https://bugzilla.suse.com/1225725"
},
{
"category": "self",
"summary": "SUSE Bug 1225730",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "self",
"summary": "SUSE Bug 1225742",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "self",
"summary": "SUSE Bug 1225764",
"url": "https://bugzilla.suse.com/1225764"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1226560",
"url": "https://bugzilla.suse.com/1226560"
},
{
"category": "self",
"summary": "SUSE Bug 1226592",
"url": "https://bugzilla.suse.com/1226592"
},
{
"category": "self",
"summary": "SUSE Bug 1226631",
"url": "https://bugzilla.suse.com/1226631"
},
{
"category": "self",
"summary": "SUSE Bug 1226748",
"url": "https://bugzilla.suse.com/1226748"
},
{
"category": "self",
"summary": "SUSE Bug 1226872",
"url": "https://bugzilla.suse.com/1226872"
},
{
"category": "self",
"summary": "SUSE Bug 1227853",
"url": "https://bugzilla.suse.com/1227853"
},
{
"category": "self",
"summary": "SUSE Bug 1228410",
"url": "https://bugzilla.suse.com/1228410"
},
{
"category": "self",
"summary": "SUSE Bug 1228430",
"url": "https://bugzilla.suse.com/1228430"
},
{
"category": "self",
"summary": "SUSE Bug 1228486",
"url": "https://bugzilla.suse.com/1228486"
},
{
"category": "self",
"summary": "SUSE Bug 1228650",
"url": "https://bugzilla.suse.com/1228650"
},
{
"category": "self",
"summary": "SUSE Bug 1228857",
"url": "https://bugzilla.suse.com/1228857"
},
{
"category": "self",
"summary": "SUSE Bug 1229312",
"url": "https://bugzilla.suse.com/1229312"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229752",
"url": "https://bugzilla.suse.com/1229752"
},
{
"category": "self",
"summary": "SUSE Bug 1229808",
"url": "https://bugzilla.suse.com/1229808"
},
{
"category": "self",
"summary": "SUSE Bug 1230055",
"url": "https://bugzilla.suse.com/1230055"
},
{
"category": "self",
"summary": "SUSE Bug 1230220",
"url": "https://bugzilla.suse.com/1230220"
},
{
"category": "self",
"summary": "SUSE Bug 1230231",
"url": "https://bugzilla.suse.com/1230231"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230558",
"url": "https://bugzilla.suse.com/1230558"
},
{
"category": "self",
"summary": "SUSE Bug 1230827",
"url": "https://bugzilla.suse.com/1230827"
},
{
"category": "self",
"summary": "SUSE Bug 1230918",
"url": "https://bugzilla.suse.com/1230918"
},
{
"category": "self",
"summary": "SUSE Bug 1231083",
"url": "https://bugzilla.suse.com/1231083"
},
{
"category": "self",
"summary": "SUSE Bug 1231089",
"url": "https://bugzilla.suse.com/1231089"
},
{
"category": "self",
"summary": "SUSE Bug 1231098",
"url": "https://bugzilla.suse.com/1231098"
},
{
"category": "self",
"summary": "SUSE Bug 1231101",
"url": "https://bugzilla.suse.com/1231101"
},
{
"category": "self",
"summary": "SUSE Bug 1231108",
"url": "https://bugzilla.suse.com/1231108"
},
{
"category": "self",
"summary": "SUSE Bug 1231111",
"url": "https://bugzilla.suse.com/1231111"
},
{
"category": "self",
"summary": "SUSE Bug 1231132",
"url": "https://bugzilla.suse.com/1231132"
},
{
"category": "self",
"summary": "SUSE Bug 1231135",
"url": "https://bugzilla.suse.com/1231135"
},
{
"category": "self",
"summary": "SUSE Bug 1231138",
"url": "https://bugzilla.suse.com/1231138"
},
{
"category": "self",
"summary": "SUSE Bug 1231169",
"url": "https://bugzilla.suse.com/1231169"
},
{
"category": "self",
"summary": "SUSE Bug 1231178",
"url": "https://bugzilla.suse.com/1231178"
},
{
"category": "self",
"summary": "SUSE Bug 1231180",
"url": "https://bugzilla.suse.com/1231180"
},
{
"category": "self",
"summary": "SUSE Bug 1231181",
"url": "https://bugzilla.suse.com/1231181"
},
{
"category": "self",
"summary": "SUSE Bug 1231187",
"url": "https://bugzilla.suse.com/1231187"
},
{
"category": "self",
"summary": "SUSE Bug 1231202",
"url": "https://bugzilla.suse.com/1231202"
},
{
"category": "self",
"summary": "SUSE Bug 1231434",
"url": "https://bugzilla.suse.com/1231434"
},
{
"category": "self",
"summary": "SUSE Bug 1231441",
"url": "https://bugzilla.suse.com/1231441"
},
{
"category": "self",
"summary": "SUSE Bug 1231452",
"url": "https://bugzilla.suse.com/1231452"
},
{
"category": "self",
"summary": "SUSE Bug 1231465",
"url": "https://bugzilla.suse.com/1231465"
},
{
"category": "self",
"summary": "SUSE Bug 1231474",
"url": "https://bugzilla.suse.com/1231474"
},
{
"category": "self",
"summary": "SUSE Bug 1231481",
"url": "https://bugzilla.suse.com/1231481"
},
{
"category": "self",
"summary": "SUSE Bug 1231537",
"url": "https://bugzilla.suse.com/1231537"
},
{
"category": "self",
"summary": "SUSE Bug 1231541",
"url": "https://bugzilla.suse.com/1231541"
},
{
"category": "self",
"summary": "SUSE Bug 1231646",
"url": "https://bugzilla.suse.com/1231646"
},
{
"category": "self",
"summary": "SUSE Bug 1231849",
"url": "https://bugzilla.suse.com/1231849"
},
{
"category": "self",
"summary": "SUSE Bug 1231856",
"url": "https://bugzilla.suse.com/1231856"
},
{
"category": "self",
"summary": "SUSE Bug 1231858",
"url": "https://bugzilla.suse.com/1231858"
},
{
"category": "self",
"summary": "SUSE Bug 1231859",
"url": "https://bugzilla.suse.com/1231859"
},
{
"category": "self",
"summary": "SUSE Bug 1231864",
"url": "https://bugzilla.suse.com/1231864"
},
{
"category": "self",
"summary": "SUSE Bug 1231904",
"url": "https://bugzilla.suse.com/1231904"
},
{
"category": "self",
"summary": "SUSE Bug 1231916",
"url": "https://bugzilla.suse.com/1231916"
},
{
"category": "self",
"summary": "SUSE Bug 1231920",
"url": "https://bugzilla.suse.com/1231920"
},
{
"category": "self",
"summary": "SUSE Bug 1231923",
"url": "https://bugzilla.suse.com/1231923"
},
{
"category": "self",
"summary": "SUSE Bug 1231930",
"url": "https://bugzilla.suse.com/1231930"
},
{
"category": "self",
"summary": "SUSE Bug 1231931",
"url": "https://bugzilla.suse.com/1231931"
},
{
"category": "self",
"summary": "SUSE Bug 1231947",
"url": "https://bugzilla.suse.com/1231947"
},
{
"category": "self",
"summary": "SUSE Bug 1231952",
"url": "https://bugzilla.suse.com/1231952"
},
{
"category": "self",
"summary": "SUSE Bug 1231953",
"url": "https://bugzilla.suse.com/1231953"
},
{
"category": "self",
"summary": "SUSE Bug 1231959",
"url": "https://bugzilla.suse.com/1231959"
},
{
"category": "self",
"summary": "SUSE Bug 1231978",
"url": "https://bugzilla.suse.com/1231978"
},
{
"category": "self",
"summary": "SUSE Bug 1232013",
"url": "https://bugzilla.suse.com/1232013"
},
{
"category": "self",
"summary": "SUSE Bug 1232015",
"url": "https://bugzilla.suse.com/1232015"
},
{
"category": "self",
"summary": "SUSE Bug 1232016",
"url": "https://bugzilla.suse.com/1232016"
},
{
"category": "self",
"summary": "SUSE Bug 1232017",
"url": "https://bugzilla.suse.com/1232017"
},
{
"category": "self",
"summary": "SUSE Bug 1232027",
"url": "https://bugzilla.suse.com/1232027"
},
{
"category": "self",
"summary": "SUSE Bug 1232028",
"url": "https://bugzilla.suse.com/1232028"
},
{
"category": "self",
"summary": "SUSE Bug 1232047",
"url": "https://bugzilla.suse.com/1232047"
},
{
"category": "self",
"summary": "SUSE Bug 1232048",
"url": "https://bugzilla.suse.com/1232048"
},
{
"category": "self",
"summary": "SUSE Bug 1232050",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "self",
"summary": "SUSE Bug 1232056",
"url": "https://bugzilla.suse.com/1232056"
},
{
"category": "self",
"summary": "SUSE Bug 1232076",
"url": "https://bugzilla.suse.com/1232076"
},
{
"category": "self",
"summary": "SUSE Bug 1232080",
"url": "https://bugzilla.suse.com/1232080"
},
{
"category": "self",
"summary": "SUSE Bug 1232094",
"url": "https://bugzilla.suse.com/1232094"
},
{
"category": "self",
"summary": "SUSE Bug 1232096",
"url": "https://bugzilla.suse.com/1232096"
},
{
"category": "self",
"summary": "SUSE Bug 1232098",
"url": "https://bugzilla.suse.com/1232098"
},
{
"category": "self",
"summary": "SUSE Bug 1232111",
"url": "https://bugzilla.suse.com/1232111"
},
{
"category": "self",
"summary": "SUSE Bug 1232126",
"url": "https://bugzilla.suse.com/1232126"
},
{
"category": "self",
"summary": "SUSE Bug 1232134",
"url": "https://bugzilla.suse.com/1232134"
},
{
"category": "self",
"summary": "SUSE Bug 1232135",
"url": "https://bugzilla.suse.com/1232135"
},
{
"category": "self",
"summary": "SUSE Bug 1232141",
"url": "https://bugzilla.suse.com/1232141"
},
{
"category": "self",
"summary": "SUSE Bug 1232142",
"url": "https://bugzilla.suse.com/1232142"
},
{
"category": "self",
"summary": "SUSE Bug 1232147",
"url": "https://bugzilla.suse.com/1232147"
},
{
"category": "self",
"summary": "SUSE Bug 1232152",
"url": "https://bugzilla.suse.com/1232152"
},
{
"category": "self",
"summary": "SUSE Bug 1232159",
"url": "https://bugzilla.suse.com/1232159"
},
{
"category": "self",
"summary": "SUSE Bug 1232162",
"url": "https://bugzilla.suse.com/1232162"
},
{
"category": "self",
"summary": "SUSE Bug 1232165",
"url": "https://bugzilla.suse.com/1232165"
},
{
"category": "self",
"summary": "SUSE Bug 1232180",
"url": "https://bugzilla.suse.com/1232180"
},
{
"category": "self",
"summary": "SUSE Bug 1232185",
"url": "https://bugzilla.suse.com/1232185"
},
{
"category": "self",
"summary": "SUSE Bug 1232187",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "self",
"summary": "SUSE Bug 1232189",
"url": "https://bugzilla.suse.com/1232189"
},
{
"category": "self",
"summary": "SUSE Bug 1232195",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "self",
"summary": "SUSE Bug 1232198",
"url": "https://bugzilla.suse.com/1232198"
},
{
"category": "self",
"summary": "SUSE Bug 1232201",
"url": "https://bugzilla.suse.com/1232201"
},
{
"category": "self",
"summary": "SUSE Bug 1232218",
"url": "https://bugzilla.suse.com/1232218"
},
{
"category": "self",
"summary": "SUSE Bug 1232224",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "self",
"summary": "SUSE Bug 1232232",
"url": "https://bugzilla.suse.com/1232232"
},
{
"category": "self",
"summary": "SUSE Bug 1232254",
"url": "https://bugzilla.suse.com/1232254"
},
{
"category": "self",
"summary": "SUSE Bug 1232255",
"url": "https://bugzilla.suse.com/1232255"
},
{
"category": "self",
"summary": "SUSE Bug 1232264",
"url": "https://bugzilla.suse.com/1232264"
},
{
"category": "self",
"summary": "SUSE Bug 1232272",
"url": "https://bugzilla.suse.com/1232272"
},
{
"category": "self",
"summary": "SUSE Bug 1232279",
"url": "https://bugzilla.suse.com/1232279"
},
{
"category": "self",
"summary": "SUSE Bug 1232287",
"url": "https://bugzilla.suse.com/1232287"
},
{
"category": "self",
"summary": "SUSE Bug 1232293",
"url": "https://bugzilla.suse.com/1232293"
},
{
"category": "self",
"summary": "SUSE Bug 1232312",
"url": "https://bugzilla.suse.com/1232312"
},
{
"category": "self",
"summary": "SUSE Bug 1232317",
"url": "https://bugzilla.suse.com/1232317"
},
{
"category": "self",
"summary": "SUSE Bug 1232318",
"url": "https://bugzilla.suse.com/1232318"
},
{
"category": "self",
"summary": "SUSE Bug 1232333",
"url": "https://bugzilla.suse.com/1232333"
},
{
"category": "self",
"summary": "SUSE Bug 1232334",
"url": "https://bugzilla.suse.com/1232334"
},
{
"category": "self",
"summary": "SUSE Bug 1232335",
"url": "https://bugzilla.suse.com/1232335"
},
{
"category": "self",
"summary": "SUSE Bug 1232339",
"url": "https://bugzilla.suse.com/1232339"
},
{
"category": "self",
"summary": "SUSE Bug 1232349",
"url": "https://bugzilla.suse.com/1232349"
},
{
"category": "self",
"summary": "SUSE Bug 1232357",
"url": "https://bugzilla.suse.com/1232357"
},
{
"category": "self",
"summary": "SUSE Bug 1232359",
"url": "https://bugzilla.suse.com/1232359"
},
{
"category": "self",
"summary": "SUSE Bug 1232362",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "self",
"summary": "SUSE Bug 1232364",
"url": "https://bugzilla.suse.com/1232364"
},
{
"category": "self",
"summary": "SUSE Bug 1232370",
"url": "https://bugzilla.suse.com/1232370"
},
{
"category": "self",
"summary": "SUSE Bug 1232371",
"url": "https://bugzilla.suse.com/1232371"
},
{
"category": "self",
"summary": "SUSE Bug 1232378",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "self",
"summary": "SUSE Bug 1232385",
"url": "https://bugzilla.suse.com/1232385"
},
{
"category": "self",
"summary": "SUSE Bug 1232387",
"url": "https://bugzilla.suse.com/1232387"
},
{
"category": "self",
"summary": "SUSE Bug 1232394",
"url": "https://bugzilla.suse.com/1232394"
},
{
"category": "self",
"summary": "SUSE Bug 1232413",
"url": "https://bugzilla.suse.com/1232413"
},
{
"category": "self",
"summary": "SUSE Bug 1232416",
"url": "https://bugzilla.suse.com/1232416"
},
{
"category": "self",
"summary": "SUSE Bug 1232436",
"url": "https://bugzilla.suse.com/1232436"
},
{
"category": "self",
"summary": "SUSE Bug 1232483",
"url": "https://bugzilla.suse.com/1232483"
},
{
"category": "self",
"summary": "SUSE Bug 1232500",
"url": "https://bugzilla.suse.com/1232500"
},
{
"category": "self",
"summary": "SUSE Bug 1232503",
"url": "https://bugzilla.suse.com/1232503"
},
{
"category": "self",
"summary": "SUSE Bug 1232504",
"url": "https://bugzilla.suse.com/1232504"
},
{
"category": "self",
"summary": "SUSE Bug 1232507",
"url": "https://bugzilla.suse.com/1232507"
},
{
"category": "self",
"summary": "SUSE Bug 1232520",
"url": "https://bugzilla.suse.com/1232520"
},
{
"category": "self",
"summary": "SUSE Bug 1232552",
"url": "https://bugzilla.suse.com/1232552"
},
{
"category": "self",
"summary": "SUSE Bug 1232757",
"url": "https://bugzilla.suse.com/1232757"
},
{
"category": "self",
"summary": "SUSE Bug 1232819",
"url": "https://bugzilla.suse.com/1232819"
},
{
"category": "self",
"summary": "SUSE Bug 1232860",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "self",
"summary": "SUSE Bug 1232870",
"url": "https://bugzilla.suse.com/1232870"
},
{
"category": "self",
"summary": "SUSE Bug 1232873",
"url": "https://bugzilla.suse.com/1232873"
},
{
"category": "self",
"summary": "SUSE Bug 1232877",
"url": "https://bugzilla.suse.com/1232877"
},
{
"category": "self",
"summary": "SUSE Bug 1232878",
"url": "https://bugzilla.suse.com/1232878"
},
{
"category": "self",
"summary": "SUSE Bug 1232881",
"url": "https://bugzilla.suse.com/1232881"
},
{
"category": "self",
"summary": "SUSE Bug 1232884",
"url": "https://bugzilla.suse.com/1232884"
},
{
"category": "self",
"summary": "SUSE Bug 1232885",
"url": "https://bugzilla.suse.com/1232885"
},
{
"category": "self",
"summary": "SUSE Bug 1232887",
"url": "https://bugzilla.suse.com/1232887"
},
{
"category": "self",
"summary": "SUSE Bug 1232888",
"url": "https://bugzilla.suse.com/1232888"
},
{
"category": "self",
"summary": "SUSE Bug 1232890",
"url": "https://bugzilla.suse.com/1232890"
},
{
"category": "self",
"summary": "SUSE Bug 1232892",
"url": "https://bugzilla.suse.com/1232892"
},
{
"category": "self",
"summary": "SUSE Bug 1232896",
"url": "https://bugzilla.suse.com/1232896"
},
{
"category": "self",
"summary": "SUSE Bug 1232897",
"url": "https://bugzilla.suse.com/1232897"
},
{
"category": "self",
"summary": "SUSE Bug 1232905",
"url": "https://bugzilla.suse.com/1232905"
},
{
"category": "self",
"summary": "SUSE Bug 1232907",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "self",
"summary": "SUSE Bug 1232919",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "self",
"summary": "SUSE Bug 1232926",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "self",
"summary": "SUSE Bug 1232928",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "self",
"summary": "SUSE Bug 1232935",
"url": "https://bugzilla.suse.com/1232935"
},
{
"category": "self",
"summary": "SUSE Bug 1233035",
"url": "https://bugzilla.suse.com/1233035"
},
{
"category": "self",
"summary": "SUSE Bug 1233049",
"url": "https://bugzilla.suse.com/1233049"
},
{
"category": "self",
"summary": "SUSE Bug 1233051",
"url": "https://bugzilla.suse.com/1233051"
},
{
"category": "self",
"summary": "SUSE Bug 1233056",
"url": "https://bugzilla.suse.com/1233056"
},
{
"category": "self",
"summary": "SUSE Bug 1233057",
"url": "https://bugzilla.suse.com/1233057"
},
{
"category": "self",
"summary": "SUSE Bug 1233061",
"url": "https://bugzilla.suse.com/1233061"
},
{
"category": "self",
"summary": "SUSE Bug 1233063",
"url": "https://bugzilla.suse.com/1233063"
},
{
"category": "self",
"summary": "SUSE Bug 1233065",
"url": "https://bugzilla.suse.com/1233065"
},
{
"category": "self",
"summary": "SUSE Bug 1233067",
"url": "https://bugzilla.suse.com/1233067"
},
{
"category": "self",
"summary": "SUSE Bug 1233070",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "self",
"summary": "SUSE Bug 1233073",
"url": "https://bugzilla.suse.com/1233073"
},
{
"category": "self",
"summary": "SUSE Bug 1233074",
"url": "https://bugzilla.suse.com/1233074"
},
{
"category": "self",
"summary": "SUSE Bug 1233100",
"url": "https://bugzilla.suse.com/1233100"
},
{
"category": "self",
"summary": "SUSE Bug 1233103",
"url": "https://bugzilla.suse.com/1233103"
},
{
"category": "self",
"summary": "SUSE Bug 1233104",
"url": "https://bugzilla.suse.com/1233104"
},
{
"category": "self",
"summary": "SUSE Bug 1233105",
"url": "https://bugzilla.suse.com/1233105"
},
{
"category": "self",
"summary": "SUSE Bug 1233106",
"url": "https://bugzilla.suse.com/1233106"
},
{
"category": "self",
"summary": "SUSE Bug 1233107",
"url": "https://bugzilla.suse.com/1233107"
},
{
"category": "self",
"summary": "SUSE Bug 1233108",
"url": "https://bugzilla.suse.com/1233108"
},
{
"category": "self",
"summary": "SUSE Bug 1233110",
"url": "https://bugzilla.suse.com/1233110"
},
{
"category": "self",
"summary": "SUSE Bug 1233111",
"url": "https://bugzilla.suse.com/1233111"
},
{
"category": "self",
"summary": "SUSE Bug 1233113",
"url": "https://bugzilla.suse.com/1233113"
},
{
"category": "self",
"summary": "SUSE Bug 1233114",
"url": "https://bugzilla.suse.com/1233114"
},
{
"category": "self",
"summary": "SUSE Bug 1233117",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "self",
"summary": "SUSE Bug 1233123",
"url": "https://bugzilla.suse.com/1233123"
},
{
"category": "self",
"summary": "SUSE Bug 1233125",
"url": "https://bugzilla.suse.com/1233125"
},
{
"category": "self",
"summary": "SUSE Bug 1233129",
"url": "https://bugzilla.suse.com/1233129"
},
{
"category": "self",
"summary": "SUSE Bug 1233130",
"url": "https://bugzilla.suse.com/1233130"
},
{
"category": "self",
"summary": "SUSE Bug 1233134",
"url": "https://bugzilla.suse.com/1233134"
},
{
"category": "self",
"summary": "SUSE Bug 1233135",
"url": "https://bugzilla.suse.com/1233135"
},
{
"category": "self",
"summary": "SUSE Bug 1233150",
"url": "https://bugzilla.suse.com/1233150"
},
{
"category": "self",
"summary": "SUSE Bug 1233189",
"url": "https://bugzilla.suse.com/1233189"
},
{
"category": "self",
"summary": "SUSE Bug 1233191",
"url": "https://bugzilla.suse.com/1233191"
},
{
"category": "self",
"summary": "SUSE Bug 1233197",
"url": "https://bugzilla.suse.com/1233197"
},
{
"category": "self",
"summary": "SUSE Bug 1233205",
"url": "https://bugzilla.suse.com/1233205"
},
{
"category": "self",
"summary": "SUSE Bug 1233206",
"url": "https://bugzilla.suse.com/1233206"
},
{
"category": "self",
"summary": "SUSE Bug 1233209",
"url": "https://bugzilla.suse.com/1233209"
},
{
"category": "self",
"summary": "SUSE Bug 1233210",
"url": "https://bugzilla.suse.com/1233210"
},
{
"category": "self",
"summary": "SUSE Bug 1233211",
"url": "https://bugzilla.suse.com/1233211"
},
{
"category": "self",
"summary": "SUSE Bug 1233212",
"url": "https://bugzilla.suse.com/1233212"
},
{
"category": "self",
"summary": "SUSE Bug 1233214",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "self",
"summary": "SUSE Bug 1233216",
"url": "https://bugzilla.suse.com/1233216"
},
{
"category": "self",
"summary": "SUSE Bug 1233238",
"url": "https://bugzilla.suse.com/1233238"
},
{
"category": "self",
"summary": "SUSE Bug 1233241",
"url": "https://bugzilla.suse.com/1233241"
},
{
"category": "self",
"summary": "SUSE Bug 1233253",
"url": "https://bugzilla.suse.com/1233253"
},
{
"category": "self",
"summary": "SUSE Bug 1233255",
"url": "https://bugzilla.suse.com/1233255"
},
{
"category": "self",
"summary": "SUSE Bug 1233293",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "self",
"summary": "SUSE Bug 1233350",
"url": "https://bugzilla.suse.com/1233350"
},
{
"category": "self",
"summary": "SUSE Bug 1233452",
"url": "https://bugzilla.suse.com/1233452"
},
{
"category": "self",
"summary": "SUSE Bug 1233453",
"url": "https://bugzilla.suse.com/1233453"
},
{
"category": "self",
"summary": "SUSE Bug 1233454",
"url": "https://bugzilla.suse.com/1233454"
},
{
"category": "self",
"summary": "SUSE Bug 1233456",
"url": "https://bugzilla.suse.com/1233456"
},
{
"category": "self",
"summary": "SUSE Bug 1233457",
"url": "https://bugzilla.suse.com/1233457"
},
{
"category": "self",
"summary": "SUSE Bug 1233458",
"url": "https://bugzilla.suse.com/1233458"
},
{
"category": "self",
"summary": "SUSE Bug 1233460",
"url": "https://bugzilla.suse.com/1233460"
},
{
"category": "self",
"summary": "SUSE Bug 1233462",
"url": "https://bugzilla.suse.com/1233462"
},
{
"category": "self",
"summary": "SUSE Bug 1233463",
"url": "https://bugzilla.suse.com/1233463"
},
{
"category": "self",
"summary": "SUSE Bug 1233468",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "self",
"summary": "SUSE Bug 1233471",
"url": "https://bugzilla.suse.com/1233471"
},
{
"category": "self",
"summary": "SUSE Bug 1233476",
"url": "https://bugzilla.suse.com/1233476"
},
{
"category": "self",
"summary": "SUSE Bug 1233478",
"url": "https://bugzilla.suse.com/1233478"
},
{
"category": "self",
"summary": "SUSE Bug 1233479",
"url": "https://bugzilla.suse.com/1233479"
},
{
"category": "self",
"summary": "SUSE Bug 1233481",
"url": "https://bugzilla.suse.com/1233481"
},
{
"category": "self",
"summary": "SUSE Bug 1233484",
"url": "https://bugzilla.suse.com/1233484"
},
{
"category": "self",
"summary": "SUSE Bug 1233487",
"url": "https://bugzilla.suse.com/1233487"
},
{
"category": "self",
"summary": "SUSE Bug 1233490",
"url": "https://bugzilla.suse.com/1233490"
},
{
"category": "self",
"summary": "SUSE Bug 1233491",
"url": "https://bugzilla.suse.com/1233491"
},
{
"category": "self",
"summary": "SUSE Bug 1233528",
"url": "https://bugzilla.suse.com/1233528"
},
{
"category": "self",
"summary": "SUSE Bug 1233548",
"url": "https://bugzilla.suse.com/1233548"
},
{
"category": "self",
"summary": "SUSE Bug 1233552",
"url": "https://bugzilla.suse.com/1233552"
},
{
"category": "self",
"summary": "SUSE Bug 1233553",
"url": "https://bugzilla.suse.com/1233553"
},
{
"category": "self",
"summary": "SUSE Bug 1233554",
"url": "https://bugzilla.suse.com/1233554"
},
{
"category": "self",
"summary": "SUSE Bug 1233555",
"url": "https://bugzilla.suse.com/1233555"
},
{
"category": "self",
"summary": "SUSE Bug 1233557",
"url": "https://bugzilla.suse.com/1233557"
},
{
"category": "self",
"summary": "SUSE Bug 1233560",
"url": "https://bugzilla.suse.com/1233560"
},
{
"category": "self",
"summary": "SUSE Bug 1233561",
"url": "https://bugzilla.suse.com/1233561"
},
{
"category": "self",
"summary": "SUSE Bug 1233570",
"url": "https://bugzilla.suse.com/1233570"
},
{
"category": "self",
"summary": "SUSE Bug 1233577",
"url": "https://bugzilla.suse.com/1233577"
},
{
"category": "self",
"summary": "SUSE Bug 1233580",
"url": "https://bugzilla.suse.com/1233580"
},
{
"category": "self",
"summary": "SUSE Bug 1233977",
"url": "https://bugzilla.suse.com/1233977"
},
{
"category": "self",
"summary": "SUSE Bug 1234012",
"url": "https://bugzilla.suse.com/1234012"
},
{
"category": "self",
"summary": "SUSE Bug 1234025",
"url": "https://bugzilla.suse.com/1234025"
},
{
"category": "self",
"summary": "SUSE Bug 1234085",
"url": "https://bugzilla.suse.com/1234085"
},
{
"category": "self",
"summary": "SUSE Bug 1234093",
"url": "https://bugzilla.suse.com/1234093"
},
{
"category": "self",
"summary": "SUSE Bug 1234098",
"url": "https://bugzilla.suse.com/1234098"
},
{
"category": "self",
"summary": "SUSE Bug 1234108",
"url": "https://bugzilla.suse.com/1234108"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47594 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48674 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48979 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48982 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48983 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48989 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48990 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52917 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52917/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52918 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52922 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52922/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26782 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26906 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26906/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35888 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35937 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-35980 page",
"url": "https://www.suse.com/security/cve/CVE-2024-35980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36484 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36484/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36883 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38615 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41016 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41049 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43817 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43897 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44932 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44964 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44995 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46681 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46800 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46802 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46805 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46807 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46810 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46812 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46819 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46821 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46842 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46853 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46859 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46864 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47663 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47665 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47667 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47667/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47669 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47670 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47670/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47671 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47682 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47696 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47697 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47697/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47698 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47699 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47701 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47712 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47712/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47713 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47713/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47718 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47718/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47742 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-47757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-47757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49852 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49855 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49861 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49863 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49868 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49871 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49875 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49877 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49879 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49884 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49891 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49900 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49902 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49903 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49905 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49905/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49907 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49907/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49908 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49908/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49921 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49924 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49925 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49925/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49934 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49938 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49938/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49945 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49945/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49957 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49957/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49963 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49963/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49966 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49968 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49981 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-49989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-49989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50009 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50009/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50025 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50044 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50044/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50062 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50067 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50073 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50074 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50077 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50078 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50082 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50089 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50093 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50095 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50096 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50098 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50099 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50108 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50115 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50116 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50117 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50124 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50124/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50125 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50127 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50128 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50131 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50134 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50135 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50138 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50141 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50146 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50147 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50148 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50150 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50153 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50155 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50156 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50160 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50167 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50171 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50179 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50182 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50183 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50184 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50186 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50187 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50188 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50189 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50192 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50194 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50195 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50196 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50198 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50201 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50205 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50205/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50208 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50209 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50215 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50218 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50229 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50230 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50232 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50233 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50234 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50236 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50237 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50249 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50255 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50259 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50261 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50264 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50267 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50268 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50269 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50271 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50273 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50274 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50279 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50282 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50287 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50289 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50290 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50292 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50295 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50298 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50301 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50302 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53052 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53058 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53059 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53059/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53060 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53061 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53063 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53066 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53068 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53079 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53085 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53088 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53104 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53110/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-12-18T15:03:33Z",
"generator": {
"date": "2024-12-18T15:03:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:4376-1",
"initial_release_date": "2024-12-18T15:03:33Z",
"revision_history": [
{
"date": "2024-12-18T15:03:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kernel-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "kernel-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"product_id": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"product_id": "kernel-azure-extra-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"product_id": "kernel-azure-optional-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"product_id": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"product": {
"name": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"product_id": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"product": {
"name": "kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"product_id": "kernel-source-azure-5.14.21-150500.33.75.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-azure-extra-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-azure-optional-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"product_id": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.75.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.75.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch"
},
"product_reference": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.14.21-150500.33.75.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch"
},
"product_reference": "kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch"
},
"product_reference": "kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.14.21-150500.33.75.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch"
},
"product_reference": "kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64"
},
"product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47594"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: never allow the PM to close a listener subflow\n\nCurrently, when deleting an endpoint the netlink PM treverses\nall the local MPTCP sockets, regardless of their status.\n\nIf an MPTCP listener socket is bound to the IP matching the\ndelete endpoint, the listener TCP socket will be closed.\nThat is unexpected, the PM should only affect data subflows.\n\nAdditionally, syzbot was able to trigger a NULL ptr dereference\ndue to the above:\n\ngeneral protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]\nCPU: 1 PID: 6550 Comm: syz-executor122 Not tainted 5.16.0-rc4-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nRIP: 0010:__lock_acquire+0xd7d/0x54a0 kernel/locking/lockdep.c:4897\nCode: 0f 0e 41 be 01 00 00 00 0f 86 c8 00 00 00 89 05 69 cc 0f 0e e9 bd 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 \u003c80\u003e 3c 02 00 0f 85 f3 2f 00 00 48 81 3b 20 75 17 8f 0f 84 52 f3 ff\nRSP: 0018:ffffc90001f2f818 EFLAGS: 00010016\nRAX: dffffc0000000000 RBX: 0000000000000018 RCX: 0000000000000000\nRDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001\nR10: 0000000000000000 R11: 000000000000000a R12: 0000000000000000\nR13: ffff88801b98d700 R14: 0000000000000000 R15: 0000000000000001\nFS: 00007f177cd3d700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f177cd1b268 CR3: 000000001dd55000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n lock_acquire kernel/locking/lockdep.c:5637 [inline]\n lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5602\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0x39/0x50 kernel/locking/spinlock.c:162\n finish_wait+0xc0/0x270 kernel/sched/wait.c:400\n inet_csk_wait_for_connect net/ipv4/inet_connection_sock.c:464 [inline]\n inet_csk_accept+0x7de/0x9d0 net/ipv4/inet_connection_sock.c:497\n mptcp_accept+0xe5/0x500 net/mptcp/protocol.c:2865\n inet_accept+0xe4/0x7b0 net/ipv4/af_inet.c:739\n mptcp_stream_accept+0x2e7/0x10e0 net/mptcp/protocol.c:3345\n do_accept+0x382/0x510 net/socket.c:1773\n __sys_accept4_file+0x7e/0xe0 net/socket.c:1816\n __sys_accept4+0xb0/0x100 net/socket.c:1846\n __do_sys_accept net/socket.c:1864 [inline]\n __se_sys_accept net/socket.c:1861 [inline]\n __x64_sys_accept+0x71/0xb0 net/socket.c:1861\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f177cd8b8e9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f177cd3d308 EFLAGS: 00000246 ORIG_RAX: 000000000000002b\nRAX: ffffffffffffffda RBX: 00007f177ce13408 RCX: 00007f177cd8b8e9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003\nRBP: 00007f177ce13400 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 00007f177ce1340c\nR13: 00007f177cde1004 R14: 6d705f706374706d R15: 0000000000022000\n \u003c/TASK\u003e\n\nFix the issue explicitly skipping MPTCP socket in TCP_LISTEN\nstatus.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47594",
"url": "https://www.suse.com/security/cve/CVE-2021-47594"
},
{
"category": "external",
"summary": "SUSE Bug 1226560 for CVE-2021-47594",
"url": "https://bugzilla.suse.com/1226560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2021-47594"
},
{
"cve": "CVE-2022-48674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: fix pcluster use-after-free on UP platforms\n\nDuring stress testing with CONFIG_SMP disabled, KASAN reports as below:\n\n==================================================================\nBUG: KASAN: use-after-free in __mutex_lock+0xe5/0xc30\nRead of size 8 at addr ffff8881094223f8 by task stress/7789\n\nCPU: 0 PID: 7789 Comm: stress Not tainted 6.0.0-rc1-00002-g0d53d2e882f9 #3\nHardware name: Red Hat KVM, BIOS 0.5.1 01/01/2011\nCall Trace:\n \u003cTASK\u003e\n..\n __mutex_lock+0xe5/0xc30\n..\n z_erofs_do_read_page+0x8ce/0x1560\n..\n z_erofs_readahead+0x31c/0x580\n..\nFreed by task 7787\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x20/0x30\n kasan_set_free_info+0x20/0x40\n __kasan_slab_free+0x10c/0x190\n kmem_cache_free+0xed/0x380\n rcu_core+0x3d5/0xc90\n __do_softirq+0x12d/0x389\n\nLast potentially related work creation:\n kasan_save_stack+0x1e/0x40\n __kasan_record_aux_stack+0x97/0xb0\n call_rcu+0x3d/0x3f0\n erofs_shrink_workstation+0x11f/0x210\n erofs_shrink_scan+0xdc/0x170\n shrink_slab.constprop.0+0x296/0x530\n drop_slab+0x1c/0x70\n drop_caches_sysctl_handler+0x70/0x80\n proc_sys_call_handler+0x20a/0x2f0\n vfs_write+0x555/0x6c0\n ksys_write+0xbe/0x160\n do_syscall_64+0x3b/0x90\n\nThe root cause is that erofs_workgroup_unfreeze() doesn\u0027t reset to\norig_val thus it causes a race that the pcluster reuses unexpectedly\nbefore freeing.\n\nSince UP platforms are quite rare now, such path becomes unnecessary.\nLet\u0027s drop such specific-designed path directly instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48674",
"url": "https://www.suse.com/security/cve/CVE-2022-48674"
},
{
"category": "external",
"summary": "SUSE Bug 1223942 for CVE-2022-48674",
"url": "https://bugzilla.suse.com/1223942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2022-48674"
},
{
"cve": "CVE-2022-48979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix array index out of bound error in DCN32 DML\n\n[Why\u0026How]\nLinkCapacitySupport array is indexed with the number of voltage states and\nnot the number of max DPPs. Fix the error by changing the array\ndeclaration to use the correct (larger) array size of total number of\nvoltage states.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48979",
"url": "https://www.suse.com/security/cve/CVE-2022-48979"
},
{
"category": "external",
"summary": "SUSE Bug 1232293 for CVE-2022-48979",
"url": "https://bugzilla.suse.com/1232293"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2022-48979"
},
{
"cve": "CVE-2022-48982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix crash when replugging CSR fake controllers\n\nIt seems fake CSR 5.0 clones can cause the suspend notifier to be\nregistered twice causing the following kernel panic:\n\n[ 71.986122] Call Trace:\n[ 71.986124] \u003cTASK\u003e\n[ 71.986125] blocking_notifier_chain_register+0x33/0x60\n[ 71.986130] hci_register_dev+0x316/0x3d0 [bluetooth 99b5497ea3d09708fa1366c1dc03288bf3cca8da]\n[ 71.986154] btusb_probe+0x979/0xd85 [btusb e1e0605a4f4c01984a4b9c8ac58c3666ae287477]\n[ 71.986159] ? __pm_runtime_set_status+0x1a9/0x300\n[ 71.986162] ? ktime_get_mono_fast_ns+0x3e/0x90\n[ 71.986167] usb_probe_interface+0xe3/0x2b0\n[ 71.986171] really_probe+0xdb/0x380\n[ 71.986174] ? pm_runtime_barrier+0x54/0x90\n[ 71.986177] __driver_probe_device+0x78/0x170\n[ 71.986180] driver_probe_device+0x1f/0x90\n[ 71.986183] __device_attach_driver+0x89/0x110\n[ 71.986186] ? driver_allows_async_probing+0x70/0x70\n[ 71.986189] bus_for_each_drv+0x8c/0xe0\n[ 71.986192] __device_attach+0xb2/0x1e0\n[ 71.986195] bus_probe_device+0x92/0xb0\n[ 71.986198] device_add+0x422/0x9a0\n[ 71.986201] ? sysfs_merge_group+0xd4/0x110\n[ 71.986205] usb_set_configuration+0x57a/0x820\n[ 71.986208] usb_generic_driver_probe+0x4f/0x70\n[ 71.986211] usb_probe_device+0x3a/0x110\n[ 71.986213] really_probe+0xdb/0x380\n[ 71.986216] ? pm_runtime_barrier+0x54/0x90\n[ 71.986219] __driver_probe_device+0x78/0x170\n[ 71.986221] driver_probe_device+0x1f/0x90\n[ 71.986224] __device_attach_driver+0x89/0x110\n[ 71.986227] ? driver_allows_async_probing+0x70/0x70\n[ 71.986230] bus_for_each_drv+0x8c/0xe0\n[ 71.986232] __device_attach+0xb2/0x1e0\n[ 71.986235] bus_probe_device+0x92/0xb0\n[ 71.986237] device_add+0x422/0x9a0\n[ 71.986239] ? _dev_info+0x7d/0x98\n[ 71.986242] ? blake2s_update+0x4c/0xc0\n[ 71.986246] usb_new_device.cold+0x148/0x36d\n[ 71.986250] hub_event+0xa8a/0x1910\n[ 71.986255] process_one_work+0x1c4/0x380\n[ 71.986259] worker_thread+0x51/0x390\n[ 71.986262] ? rescuer_thread+0x3b0/0x3b0\n[ 71.986264] kthread+0xdb/0x110\n[ 71.986266] ? kthread_complete_and_exit+0x20/0x20\n[ 71.986268] ret_from_fork+0x1f/0x30\n[ 71.986273] \u003c/TASK\u003e\n[ 71.986274] ---[ end trace 0000000000000000 ]---\n[ 71.986284] btusb: probe of 2-1.6:1.0 failed with error -17",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48982",
"url": "https://www.suse.com/security/cve/CVE-2022-48982"
},
{
"category": "external",
"summary": "SUSE Bug 1231978 for CVE-2022-48982",
"url": "https://bugzilla.suse.com/1231978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2022-48982"
},
{
"cve": "CVE-2022-48983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: Fix a null-ptr-deref in io_tctx_exit_cb()\n\nSyzkaller reports a NULL deref bug as follows:\n\n BUG: KASAN: null-ptr-deref in io_tctx_exit_cb+0x53/0xd3\n Read of size 4 at addr 0000000000000138 by task file1/1955\n\n CPU: 1 PID: 1955 Comm: file1 Not tainted 6.1.0-rc7-00103-gef4d3ea40565 #75\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xcd/0x134\n ? io_tctx_exit_cb+0x53/0xd3\n kasan_report+0xbb/0x1f0\n ? io_tctx_exit_cb+0x53/0xd3\n kasan_check_range+0x140/0x190\n io_tctx_exit_cb+0x53/0xd3\n task_work_run+0x164/0x250\n ? task_work_cancel+0x30/0x30\n get_signal+0x1c3/0x2440\n ? lock_downgrade+0x6e0/0x6e0\n ? lock_downgrade+0x6e0/0x6e0\n ? exit_signals+0x8b0/0x8b0\n ? do_raw_read_unlock+0x3b/0x70\n ? do_raw_spin_unlock+0x50/0x230\n arch_do_signal_or_restart+0x82/0x2470\n ? kmem_cache_free+0x260/0x4b0\n ? putname+0xfe/0x140\n ? get_sigframe_size+0x10/0x10\n ? do_execveat_common.isra.0+0x226/0x710\n ? lockdep_hardirqs_on+0x79/0x100\n ? putname+0xfe/0x140\n ? do_execveat_common.isra.0+0x238/0x710\n exit_to_user_mode_prepare+0x15f/0x250\n syscall_exit_to_user_mode+0x19/0x50\n do_syscall_64+0x42/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n RIP: 0023:0x0\n Code: Unable to access opcode bytes at 0xffffffffffffffd6.\n RSP: 002b:00000000fffb7790 EFLAGS: 00000200 ORIG_RAX: 000000000000000b\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n Kernel panic - not syncing: panic_on_warn set ...\n\nThis happens because the adding of task_work from io_ring_exit_work()\nisn\u0027t synchronized with canceling all work items from eg exec. The\nexecution of the two are ordered in that they are both run by the task\nitself, but if io_tctx_exit_cb() is queued while we\u0027re canceling all\nwork items off exec AND gets executed when the task exits to userspace\nrather than in the main loop in io_uring_cancel_generic(), then we can\nfind current-\u003eio_uring == NULL and hit the above crash.\n\nIt\u0027s safe to add this NULL check here, because the execution of the two\npaths are done by the task itself.\n\n[axboe: add code comment and also put an explanation in the commit msg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48983",
"url": "https://www.suse.com/security/cve/CVE-2022-48983"
},
{
"category": "external",
"summary": "SUSE Bug 1231959 for CVE-2022-48983",
"url": "https://bugzilla.suse.com/1231959"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2022-48983"
},
{
"cve": "CVE-2022-48989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: Fix oops due to race with cookie_lru and use_cookie\n\nIf a cookie expires from the LRU and the LRU_DISCARD flag is set, but\nthe state machine has not run yet, it\u0027s possible another thread can call\nfscache_use_cookie and begin to use it.\n\nWhen the cookie_worker finally runs, it will see the LRU_DISCARD flag\nset, transition the cookie-\u003estate to LRU_DISCARDING, which will then\nwithdraw the cookie. Once the cookie is withdrawn the object is removed\nthe below oops will occur because the object associated with the cookie\nis now NULL.\n\nFix the oops by clearing the LRU_DISCARD bit if another thread uses the\ncookie before the cookie_worker runs.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n ...\n CPU: 31 PID: 44773 Comm: kworker/u130:1 Tainted: G E 6.0.0-5.dneg.x86_64 #1\n Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022\n Workqueue: events_unbound netfs_rreq_write_to_cache_work [netfs]\n RIP: 0010:cachefiles_prepare_write+0x28/0x90 [cachefiles]\n ...\n Call Trace:\n netfs_rreq_write_to_cache_work+0x11c/0x320 [netfs]\n process_one_work+0x217/0x3e0\n worker_thread+0x4a/0x3b0\n kthread+0xd6/0x100",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48989",
"url": "https://www.suse.com/security/cve/CVE-2022-48989"
},
{
"category": "external",
"summary": "SUSE Bug 1232027 for CVE-2022-48989",
"url": "https://bugzilla.suse.com/1232027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2022-48989"
},
{
"cve": "CVE-2022-48990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix use-after-free during gpu recovery\n\n[Why]\n [ 754.862560] refcount_t: underflow; use-after-free.\n [ 754.862898] Call Trace:\n [ 754.862903] \u003cTASK\u003e\n [ 754.862913] amdgpu_job_free_cb+0xc2/0xe1 [amdgpu]\n [ 754.863543] drm_sched_main.cold+0x34/0x39 [amd_sched]\n\n[How]\n The fw_fence may be not init, check whether dma_fence_init\n is performed before job free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48990",
"url": "https://www.suse.com/security/cve/CVE-2022-48990"
},
{
"category": "external",
"summary": "SUSE Bug 1232028 for CVE-2022-48990",
"url": "https://bugzilla.suse.com/1232028"
},
{
"category": "external",
"summary": "SUSE Bug 1232029 for CVE-2022-48990",
"url": "https://bugzilla.suse.com/1232029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2022-48990"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52917",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52917"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52917",
"url": "https://www.suse.com/security/cve/CVE-2023-52917"
},
{
"category": "external",
"summary": "SUSE Bug 1231849 for CVE-2023-52917",
"url": "https://bugzilla.suse.com/1231849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-52917"
},
{
"cve": "CVE-2023-52918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52918"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pci: cx23885: check cx23885_vdev_init() return\n\ncx23885_vdev_init() can return a NULL pointer, but that pointer\nis used in the next line without a check.\n\nAdd a NULL pointer check and go to the error unwind if it is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52918",
"url": "https://www.suse.com/security/cve/CVE-2023-52918"
},
{
"category": "external",
"summary": "SUSE Bug 1232047 for CVE-2023-52918",
"url": "https://bugzilla.suse.com/1232047"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-52918"
},
{
"cve": "CVE-2023-52921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix possible UAF in amdgpu_cs_pass1()\n\nSince the gang_size check is outside of chunk parsing\nloop, we need to reset i before we free the chunk data.\n\nSuggested by Ye Zhang (@VAR10CK) of Baidu Security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52921",
"url": "https://www.suse.com/security/cve/CVE-2023-52921"
},
{
"category": "external",
"summary": "SUSE Bug 1233452 for CVE-2023-52921",
"url": "https://bugzilla.suse.com/1233452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-52921"
},
{
"cve": "CVE-2023-52922",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52922"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Fix UAF in bcm_proc_show()\n\nBUG: KASAN: slab-use-after-free in bcm_proc_show+0x969/0xa80\nRead of size 8 at addr ffff888155846230 by task cat/7862\n\nCPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 #230\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xd5/0x150\n print_report+0xc1/0x5e0\n kasan_report+0xba/0xf0\n bcm_proc_show+0x969/0xa80\n seq_read_iter+0x4f6/0x1260\n seq_read+0x165/0x210\n proc_reg_read+0x227/0x300\n vfs_read+0x1d5/0x8d0\n ksys_read+0x11e/0x240\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAllocated by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n __kasan_kmalloc+0x9e/0xa0\n bcm_sendmsg+0x264b/0x44e0\n sock_sendmsg+0xda/0x180\n ____sys_sendmsg+0x735/0x920\n ___sys_sendmsg+0x11d/0x1b0\n __sys_sendmsg+0xfa/0x1d0\n do_syscall_64+0x35/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 7846:\n kasan_save_stack+0x1e/0x40\n kasan_set_track+0x21/0x30\n kasan_save_free_info+0x27/0x40\n ____kasan_slab_free+0x161/0x1c0\n slab_free_freelist_hook+0x119/0x220\n __kmem_cache_free+0xb4/0x2e0\n rcu_core+0x809/0x1bd0\n\nbcm_op is freed before procfs entry be removed in bcm_release(),\nthis lead to bcm_proc_show() may read the freed bcm_op.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52922",
"url": "https://www.suse.com/security/cve/CVE-2023-52922"
},
{
"category": "external",
"summary": "SUSE Bug 1233977 for CVE-2023-52922",
"url": "https://bugzilla.suse.com/1233977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-52922"
},
{
"cve": "CVE-2024-26782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix double-free on socket dismantle\n\nwhen MPTCP server accepts an incoming connection, it clones its listener\nsocket. However, the pointer to \u0027inet_opt\u0027 for the new socket has the same\nvalue as the original one: as a consequence, on program exit it\u0027s possible\nto observe the following splat:\n\n BUG: KASAN: double-free in inet_sock_destruct+0x54f/0x8b0\n Free of addr ffff888485950880 by task swapper/25/0\n\n CPU: 25 PID: 0 Comm: swapper/25 Kdump: loaded Not tainted 6.8.0-rc1+ #609\n Hardware name: Supermicro SYS-6027R-72RF/X9DRH-7TF/7F/iTF/iF, BIOS 3.0 07/26/2013\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x32/0x50\n print_report+0xca/0x620\n kasan_report_invalid_free+0x64/0x90\n __kasan_slab_free+0x1aa/0x1f0\n kfree+0xed/0x2e0\n inet_sock_destruct+0x54f/0x8b0\n __sk_destruct+0x48/0x5b0\n rcu_do_batch+0x34e/0xd90\n rcu_core+0x559/0xac0\n __do_softirq+0x183/0x5a4\n irq_exit_rcu+0x12d/0x170\n sysvec_apic_timer_interrupt+0x6b/0x80\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x16/0x20\n RIP: 0010:cpuidle_enter_state+0x175/0x300\n Code: 30 00 0f 84 1f 01 00 00 83 e8 01 83 f8 ff 75 e5 48 83 c4 18 44 89 e8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc fb 45 85 ed \u003c0f\u003e 89 60 ff ff ff 48 c1 e5 06 48 c7 43 18 00 00 00 00 48 83 44 2b\n RSP: 0018:ffff888481cf7d90 EFLAGS: 00000202\n RAX: 0000000000000000 RBX: ffff88887facddc8 RCX: 0000000000000000\n RDX: 1ffff1110ff588b1 RSI: 0000000000000019 RDI: ffff88887fac4588\n RBP: 0000000000000004 R08: 0000000000000002 R09: 0000000000043080\n R10: 0009b02ea273363f R11: ffff88887fabf42b R12: ffffffff932592e0\n R13: 0000000000000004 R14: 0000000000000000 R15: 00000022c880ec80\n cpuidle_enter+0x4a/0xa0\n do_idle+0x310/0x410\n cpu_startup_entry+0x51/0x60\n start_secondary+0x211/0x270\n secondary_startup_64_no_verify+0x184/0x18b\n \u003c/TASK\u003e\n\n Allocated by task 6853:\n kasan_save_stack+0x1c/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0xa6/0xb0\n __kmalloc+0x1eb/0x450\n cipso_v4_sock_setattr+0x96/0x360\n netlbl_sock_setattr+0x132/0x1f0\n selinux_netlbl_socket_post_create+0x6c/0x110\n selinux_socket_post_create+0x37b/0x7f0\n security_socket_post_create+0x63/0xb0\n __sock_create+0x305/0x450\n __sys_socket_create.part.23+0xbd/0x130\n __sys_socket+0x37/0xb0\n __x64_sys_socket+0x6f/0xb0\n do_syscall_64+0x83/0x160\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 6858:\n kasan_save_stack+0x1c/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x12c/0x1f0\n kfree+0xed/0x2e0\n inet_sock_destruct+0x54f/0x8b0\n __sk_destruct+0x48/0x5b0\n subflow_ulp_release+0x1f0/0x250\n tcp_cleanup_ulp+0x6e/0x110\n tcp_v4_destroy_sock+0x5a/0x3a0\n inet_csk_destroy_sock+0x135/0x390\n tcp_fin+0x416/0x5c0\n tcp_data_queue+0x1bc8/0x4310\n tcp_rcv_state_process+0x15a3/0x47b0\n tcp_v4_do_rcv+0x2c1/0x990\n tcp_v4_rcv+0x41fb/0x5ed0\n ip_protocol_deliver_rcu+0x6d/0x9f0\n ip_local_deliver_finish+0x278/0x360\n ip_local_deliver+0x182/0x2c0\n ip_rcv+0xb5/0x1c0\n __netif_receive_skb_one_core+0x16e/0x1b0\n process_backlog+0x1e3/0x650\n __napi_poll+0xa6/0x500\n net_rx_action+0x740/0xbb0\n __do_softirq+0x183/0x5a4\n\n The buggy address belongs to the object at ffff888485950880\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes inside of\n 64-byte region [ffff888485950880, ffff8884859508c0)\n\n The buggy address belongs to the physical page:\n page:0000000056d1e95e refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888485950700 pfn:0x485950\n flags: 0x57ffffc0000800(slab|node=1|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0057ffffc0000800 ffff88810004c640 ffffea00121b8ac0 dead000000000006\n raw: ffff888485950700 0000000000200019 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888485950780: fa fb fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26782",
"url": "https://www.suse.com/security/cve/CVE-2024-26782"
},
{
"category": "external",
"summary": "SUSE Bug 1222590 for CVE-2024-26782",
"url": "https://bugzilla.suse.com/1222590"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-26782"
},
{
"cve": "CVE-2024-26906",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26906"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()\n\nWhen trying to use copy_from_kernel_nofault() to read vsyscall page\nthrough a bpf program, the following oops was reported:\n\n BUG: unable to handle page fault for address: ffffffffff600000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 3231067 P4D 3231067 PUD 3233067 PMD 3235067 PTE 0\n Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 20390 Comm: test_progs ...... 6.7.0+ #58\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996) ......\n RIP: 0010:copy_from_kernel_nofault+0x6f/0x110\n ......\n Call Trace:\n \u003cTASK\u003e\n ? copy_from_kernel_nofault+0x6f/0x110\n bpf_probe_read_kernel+0x1d/0x50\n bpf_prog_2061065e56845f08_do_probe_read+0x51/0x8d\n trace_call_bpf+0xc5/0x1c0\n perf_call_bpf_enter.isra.0+0x69/0xb0\n perf_syscall_enter+0x13e/0x200\n syscall_trace_enter+0x188/0x1c0\n do_syscall_64+0xb5/0xe0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n \u003c/TASK\u003e\n ......\n ---[ end trace 0000000000000000 ]---\n\nThe oops is triggered when:\n\n1) A bpf program uses bpf_probe_read_kernel() to read from the vsyscall\npage and invokes copy_from_kernel_nofault() which in turn calls\n__get_user_asm().\n\n2) Because the vsyscall page address is not readable from kernel space,\na page fault exception is triggered accordingly.\n\n3) handle_page_fault() considers the vsyscall page address as a user\nspace address instead of a kernel space address. This results in the\nfix-up setup by bpf not being applied and a page_fault_oops() is invoked\ndue to SMAP.\n\nConsidering handle_page_fault() has already considered the vsyscall page\naddress as a userspace address, fix the problem by disallowing vsyscall\npage read for copy_from_kernel_nofault().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26906",
"url": "https://www.suse.com/security/cve/CVE-2024-26906"
},
{
"category": "external",
"summary": "SUSE Bug 1223202 for CVE-2024-26906",
"url": "https://bugzilla.suse.com/1223202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-26906"
},
{
"cve": "CVE-2024-26953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: esp: fix bad handling of pages from page_pool\n\nWhen the skb is reorganized during esp_output (!esp-\u003einline), the pages\ncoming from the original skb fragments are supposed to be released back\nto the system through put_page. But if the skb fragment pages are\noriginating from a page_pool, calling put_page on them will trigger a\npage_pool leak which will eventually result in a crash.\n\nThis leak can be easily observed when using CONFIG_DEBUG_VM and doing\nipsec + gre (non offloaded) forwarding:\n\n BUG: Bad page state in process ksoftirqd/16 pfn:1451b6\n page:00000000de2b8d32 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1451b6000 pfn:0x1451b6\n flags: 0x200000000000000(node=0|zone=2)\n page_type: 0xffffffff()\n raw: 0200000000000000 dead000000000040 ffff88810d23c000 0000000000000000\n raw: 00000001451b6000 0000000000000001 00000000ffffffff 0000000000000000\n page dumped because: page_pool leak\n Modules linked in: ip_gre gre mlx5_ib mlx5_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink iptable_nat nf_nat xt_addrtype br_netfilter rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core overlay zram zsmalloc fuse [last unloaded: mlx5_core]\n CPU: 16 PID: 96 Comm: ksoftirqd/16 Not tainted 6.8.0-rc4+ #22\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x36/0x50\n bad_page+0x70/0xf0\n free_unref_page_prepare+0x27a/0x460\n free_unref_page+0x38/0x120\n esp_ssg_unref.isra.0+0x15f/0x200\n esp_output_tail+0x66d/0x780\n esp_xmit+0x2c5/0x360\n validate_xmit_xfrm+0x313/0x370\n ? validate_xmit_skb+0x1d/0x330\n validate_xmit_skb_list+0x4c/0x70\n sch_direct_xmit+0x23e/0x350\n __dev_queue_xmit+0x337/0xba0\n ? nf_hook_slow+0x3f/0xd0\n ip_finish_output2+0x25e/0x580\n iptunnel_xmit+0x19b/0x240\n ip_tunnel_xmit+0x5fb/0xb60\n ipgre_xmit+0x14d/0x280 [ip_gre]\n dev_hard_start_xmit+0xc3/0x1c0\n __dev_queue_xmit+0x208/0xba0\n ? nf_hook_slow+0x3f/0xd0\n ip_finish_output2+0x1ca/0x580\n ip_sublist_rcv_finish+0x32/0x40\n ip_sublist_rcv+0x1b2/0x1f0\n ? ip_rcv_finish_core.constprop.0+0x460/0x460\n ip_list_rcv+0x103/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x1b3/0x2c0\n napi_gro_receive+0xc8/0x200\n gro_cell_poll+0x52/0x90\n __napi_poll+0x25/0x1a0\n net_rx_action+0x28e/0x300\n __do_softirq+0xc3/0x276\n ? sort_range+0x20/0x20\n run_ksoftirqd+0x1e/0x30\n smpboot_thread_fn+0xa6/0x130\n kthread+0xcd/0x100\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x31/0x50\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\nThe suggested fix is to introduce a new wrapper (skb_page_unref) that\ncovers page refcounting for page_pool pages as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26953",
"url": "https://www.suse.com/security/cve/CVE-2024-26953"
},
{
"category": "external",
"summary": "SUSE Bug 1223656 for CVE-2024-26953",
"url": "https://bugzilla.suse.com/1223656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-26953"
},
{
"cve": "CVE-2024-35888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35888"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerspan: make sure erspan_base_hdr is present in skb-\u003ehead\n\nsyzbot reported a problem in ip6erspan_rcv() [1]\n\nIssue is that ip6erspan_rcv() (and erspan_rcv()) no longer make\nsure erspan_base_hdr is present in skb linear part (skb-\u003ehead)\nbefore getting @ver field from it.\n\nAdd the missing pskb_may_pull() calls.\n\nv2: Reload iph pointer in erspan_rcv() after pskb_may_pull()\n because skb-\u003ehead might have changed.\n\n[1]\n\n BUG: KMSAN: uninit-value in pskb_may_pull_reason include/linux/skbuff.h:2742 [inline]\n BUG: KMSAN: uninit-value in pskb_may_pull include/linux/skbuff.h:2756 [inline]\n BUG: KMSAN: uninit-value in ip6erspan_rcv net/ipv6/ip6_gre.c:541 [inline]\n BUG: KMSAN: uninit-value in gre_rcv+0x11f8/0x1930 net/ipv6/ip6_gre.c:610\n pskb_may_pull_reason include/linux/skbuff.h:2742 [inline]\n pskb_may_pull include/linux/skbuff.h:2756 [inline]\n ip6erspan_rcv net/ipv6/ip6_gre.c:541 [inline]\n gre_rcv+0x11f8/0x1930 net/ipv6/ip6_gre.c:610\n ip6_protocol_deliver_rcu+0x1d4c/0x2ca0 net/ipv6/ip6_input.c:438\n ip6_input_finish net/ipv6/ip6_input.c:483 [inline]\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ip6_input+0x15d/0x430 net/ipv6/ip6_input.c:492\n ip6_mc_input+0xa7e/0xc80 net/ipv6/ip6_input.c:586\n dst_input include/net/dst.h:460 [inline]\n ip6_rcv_finish+0x955/0x970 net/ipv6/ip6_input.c:79\n NF_HOOK include/linux/netfilter.h:314 [inline]\n ipv6_rcv+0xde/0x390 net/ipv6/ip6_input.c:310\n __netif_receive_skb_one_core net/core/dev.c:5538 [inline]\n __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5652\n netif_receive_skb_internal net/core/dev.c:5738 [inline]\n netif_receive_skb+0x58/0x660 net/core/dev.c:5798\n tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1549\n tun_get_user+0x5566/0x69e0 drivers/net/tun.c:2002\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2108 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xb63/0x1520 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xe0 fs/read_write.c:652\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3804 [inline]\n slab_alloc_node mm/slub.c:3845 [inline]\n kmem_cache_alloc_node+0x613/0xc50 mm/slub.c:3888\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:577\n __alloc_skb+0x35b/0x7a0 net/core/skbuff.c:668\n alloc_skb include/linux/skbuff.h:1318 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6504\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2795\n tun_alloc_skb drivers/net/tun.c:1525 [inline]\n tun_get_user+0x209a/0x69e0 drivers/net/tun.c:1846\n tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2048\n call_write_iter include/linux/fs.h:2108 [inline]\n new_sync_write fs/read_write.c:497 [inline]\n vfs_write+0xb63/0x1520 fs/read_write.c:590\n ksys_write+0x20f/0x4c0 fs/read_write.c:643\n __do_sys_write fs/read_write.c:655 [inline]\n __se_sys_write fs/read_write.c:652 [inline]\n __x64_sys_write+0x93/0xe0 fs/read_write.c:652\n do_syscall_64+0xd5/0x1f0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nCPU: 1 PID: 5045 Comm: syz-executor114 Not tainted 6.9.0-rc1-syzkaller-00021-g962490525cff #0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35888",
"url": "https://www.suse.com/security/cve/CVE-2024-35888"
},
{
"category": "external",
"summary": "SUSE Bug 1224518 for CVE-2024-35888",
"url": "https://bugzilla.suse.com/1224518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-35888"
},
{
"cve": "CVE-2024-35937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35937"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: check A-MSDU format more carefully\n\nIf it looks like there\u0027s another subframe in the A-MSDU\nbut the header isn\u0027t fully there, we can end up reading\ndata out of bounds, only to discard later. Make this a\nbit more careful and check if the subframe header can\neven be present.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35937",
"url": "https://www.suse.com/security/cve/CVE-2024-35937"
},
{
"category": "external",
"summary": "SUSE Bug 1224526 for CVE-2024-35937",
"url": "https://bugzilla.suse.com/1224526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-35937"
},
{
"cve": "CVE-2024-35980",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-35980"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: tlb: Fix TLBI RANGE operand\n\nKVM/arm64 relies on TLBI RANGE feature to flush TLBs when the dirty\npages are collected by VMM and the page table entries become write\nprotected during live migration. Unfortunately, the operand passed\nto the TLBI RANGE instruction isn\u0027t correctly sorted out due to the\ncommit 117940aa6e5f (\"KVM: arm64: Define kvm_tlb_flush_vmid_range()\").\nIt leads to crash on the destination VM after live migration because\nTLBs aren\u0027t flushed completely and some of the dirty pages are missed.\n\nFor example, I have a VM where 8GB memory is assigned, starting from\n0x40000000 (1GB). Note that the host has 4KB as the base page size.\nIn the middile of migration, kvm_tlb_flush_vmid_range() is executed\nto flush TLBs. It passes MAX_TLBI_RANGE_PAGES as the argument to\n__kvm_tlb_flush_vmid_range() and __flush_s2_tlb_range_op(). SCALE#3\nand NUM#31, corresponding to MAX_TLBI_RANGE_PAGES, isn\u0027t supported\nby __TLBI_RANGE_NUM(). In this specific case, -1 has been returned\nfrom __TLBI_RANGE_NUM() for SCALE#3/2/1/0 and rejected by the loop\nin the __flush_tlb_range_op() until the variable @scale underflows\nand becomes -9, 0xffff708000040000 is set as the operand. The operand\nis wrong since it\u0027s sorted out by __TLBI_VADDR_RANGE() according to\ninvalid @scale and @num.\n\nFix it by extending __TLBI_RANGE_NUM() to support the combination of\nSCALE#3 and NUM#31. With the changes, [-1 31] instead of [-1 30] can\nbe returned from the macro, meaning the TLBs for 0x200000 pages in the\nabove example can be flushed in one shoot with SCALE#3 and NUM#31. The\nmacro TLBI_RANGE_MASK is dropped since no one uses it any more. The\ncomments are also adjusted accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-35980",
"url": "https://www.suse.com/security/cve/CVE-2024-35980"
},
{
"category": "external",
"summary": "SUSE Bug 1224574 for CVE-2024-35980",
"url": "https://bugzilla.suse.com/1224574"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-35980"
},
{
"cve": "CVE-2024-36484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36484"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: relax socket state check at accept time.\n\nChristoph reported the following splat:\n\nWARNING: CPU: 1 PID: 772 at net/ipv4/af_inet.c:761 __inet_accept+0x1f4/0x4a0\nModules linked in:\nCPU: 1 PID: 772 Comm: syz-executor510 Not tainted 6.9.0-rc7-g7da7119fe22b #56\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.11.0-2.el7 04/01/2014\nRIP: 0010:__inet_accept+0x1f4/0x4a0 net/ipv4/af_inet.c:759\nCode: 04 38 84 c0 0f 85 87 00 00 00 41 c7 04 24 03 00 00 00 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 ec b7 da fd \u003c0f\u003e 0b e9 7f fe ff ff e8 e0 b7 da fd 0f 0b e9 fe fe ff ff 89 d9 80\nRSP: 0018:ffffc90000c2fc58 EFLAGS: 00010293\nRAX: ffffffff836bdd14 RBX: 0000000000000000 RCX: ffff888104668000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: dffffc0000000000 R08: ffffffff836bdb89 R09: fffff52000185f64\nR10: dffffc0000000000 R11: fffff52000185f64 R12: dffffc0000000000\nR13: 1ffff92000185f98 R14: ffff88810754d880 R15: ffff8881007b7800\nFS: 000000001c772880(0000) GS:ffff88811b280000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fb9fcf2e178 CR3: 00000001045d2002 CR4: 0000000000770ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n inet_accept+0x138/0x1d0 net/ipv4/af_inet.c:786\n do_accept+0x435/0x620 net/socket.c:1929\n __sys_accept4_file net/socket.c:1969 [inline]\n __sys_accept4+0x9b/0x110 net/socket.c:1999\n __do_sys_accept net/socket.c:2016 [inline]\n __se_sys_accept net/socket.c:2013 [inline]\n __x64_sys_accept+0x7d/0x90 net/socket.c:2013\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x58/0x100 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x4315f9\nCode: fd ff 48 81 c4 80 00 00 00 e9 f1 fe ff ff 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 0f 83 ab b4 fd ff c3 66 2e 0f 1f 84 00 00 00 00\nRSP: 002b:00007ffdb26d9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002b\nRAX: ffffffffffffffda RBX: 0000000000400300 RCX: 00000000004315f9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004\nRBP: 00000000006e1018 R08: 0000000000400300 R09: 0000000000400300\nR10: 0000000000400300 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000040cdf0 R14: 000000000040ce80 R15: 0000000000000055\n \u003c/TASK\u003e\n\nThe reproducer invokes shutdown() before entering the listener status.\nAfter commit 94062790aedb (\"tcp: defer shutdown(SEND_SHUTDOWN) for\nTCP_SYN_RECV sockets\"), the above causes the child to reach the accept\nsyscall in FIN_WAIT1 status.\n\nEric noted we can relax the existing assertion in __inet_accept()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36484",
"url": "https://www.suse.com/security/cve/CVE-2024-36484"
},
{
"category": "external",
"summary": "SUSE Bug 1226872 for CVE-2024-36484",
"url": "https://bugzilla.suse.com/1226872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36484"
},
{
"cve": "CVE-2024-36883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36883"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix out-of-bounds access in ops_init\n\nnet_alloc_generic is called by net_alloc, which is called without any\nlocking. It reads max_gen_ptrs, which is changed under pernet_ops_rwsem. It\nis read twice, first to allocate an array, then to set s.len, which is\nlater used to limit the bounds of the array access.\n\nIt is possible that the array is allocated and another thread is\nregistering a new pernet ops, increments max_gen_ptrs, which is then used\nto set s.len with a larger than allocated length for the variable array.\n\nFix it by reading max_gen_ptrs only once in net_alloc_generic. If\nmax_gen_ptrs is later incremented, it will be caught in net_assign_generic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36883",
"url": "https://www.suse.com/security/cve/CVE-2024-36883"
},
{
"category": "external",
"summary": "SUSE Bug 1225725 for CVE-2024-36883",
"url": "https://bugzilla.suse.com/1225725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36883"
},
{
"cve": "CVE-2024-36886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix UAF in error path\n\nSam Page (sam4k) working with Trend Micro Zero Day Initiative reported\na UAF in the tipc_buf_append() error path:\n\nBUG: KASAN: slab-use-after-free in kfree_skb_list_reason+0x47e/0x4c0\nlinux/net/core/skbuff.c:1183\nRead of size 8 at addr ffff88804d2a7c80 by task poc/8034\n\nCPU: 1 PID: 8034 Comm: poc Not tainted 6.8.2 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.16.0-debian-1.16.0-5 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n __dump_stack linux/lib/dump_stack.c:88\n dump_stack_lvl+0xd9/0x1b0 linux/lib/dump_stack.c:106\n print_address_description linux/mm/kasan/report.c:377\n print_report+0xc4/0x620 linux/mm/kasan/report.c:488\n kasan_report+0xda/0x110 linux/mm/kasan/report.c:601\n kfree_skb_list_reason+0x47e/0x4c0 linux/net/core/skbuff.c:1183\n skb_release_data+0x5af/0x880 linux/net/core/skbuff.c:1026\n skb_release_all linux/net/core/skbuff.c:1094\n __kfree_skb linux/net/core/skbuff.c:1108\n kfree_skb_reason+0x12d/0x210 linux/net/core/skbuff.c:1144\n kfree_skb linux/./include/linux/skbuff.h:1244\n tipc_buf_append+0x425/0xb50 linux/net/tipc/msg.c:186\n tipc_link_input+0x224/0x7c0 linux/net/tipc/link.c:1324\n tipc_link_rcv+0x76e/0x2d70 linux/net/tipc/link.c:1824\n tipc_rcv+0x45f/0x10f0 linux/net/tipc/node.c:2159\n tipc_udp_recv+0x73b/0x8f0 linux/net/tipc/udp_media.c:390\n udp_queue_rcv_one_skb+0xad2/0x1850 linux/net/ipv4/udp.c:2108\n udp_queue_rcv_skb+0x131/0xb00 linux/net/ipv4/udp.c:2186\n udp_unicast_rcv_skb+0x165/0x3b0 linux/net/ipv4/udp.c:2346\n __udp4_lib_rcv+0x2594/0x3400 linux/net/ipv4/udp.c:2422\n ip_protocol_deliver_rcu+0x30c/0x4e0 linux/net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x2e4/0x520 linux/net/ipv4/ip_input.c:233\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_local_deliver+0x18e/0x1f0 linux/net/ipv4/ip_input.c:254\n dst_input linux/./include/net/dst.h:461\n ip_rcv_finish linux/net/ipv4/ip_input.c:449\n NF_HOOK linux/./include/linux/netfilter.h:314\n NF_HOOK linux/./include/linux/netfilter.h:308\n ip_rcv+0x2c5/0x5d0 linux/net/ipv4/ip_input.c:569\n __netif_receive_skb_one_core+0x199/0x1e0 linux/net/core/dev.c:5534\n __netif_receive_skb+0x1f/0x1c0 linux/net/core/dev.c:5648\n process_backlog+0x101/0x6b0 linux/net/core/dev.c:5976\n __napi_poll.constprop.0+0xba/0x550 linux/net/core/dev.c:6576\n napi_poll linux/net/core/dev.c:6645\n net_rx_action+0x95a/0xe90 linux/net/core/dev.c:6781\n __do_softirq+0x21f/0x8e7 linux/kernel/softirq.c:553\n do_softirq linux/kernel/softirq.c:454\n do_softirq+0xb2/0xf0 linux/kernel/softirq.c:441\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x100/0x120 linux/kernel/softirq.c:381\n local_bh_enable linux/./include/linux/bottom_half.h:33\n rcu_read_unlock_bh linux/./include/linux/rcupdate.h:851\n __dev_queue_xmit+0x871/0x3ee0 linux/net/core/dev.c:4378\n dev_queue_xmit linux/./include/linux/netdevice.h:3169\n neigh_hh_output linux/./include/net/neighbour.h:526\n neigh_output linux/./include/net/neighbour.h:540\n ip_finish_output2+0x169f/0x2550 linux/net/ipv4/ip_output.c:235\n __ip_finish_output linux/net/ipv4/ip_output.c:313\n __ip_finish_output+0x49e/0x950 linux/net/ipv4/ip_output.c:295\n ip_finish_output+0x31/0x310 linux/net/ipv4/ip_output.c:323\n NF_HOOK_COND linux/./include/linux/netfilter.h:303\n ip_output+0x13b/0x2a0 linux/net/ipv4/ip_output.c:433\n dst_output linux/./include/net/dst.h:451\n ip_local_out linux/net/ipv4/ip_output.c:129\n ip_send_skb+0x3e5/0x560 linux/net/ipv4/ip_output.c:1492\n udp_send_skb+0x73f/0x1530 linux/net/ipv4/udp.c:963\n udp_sendmsg+0x1a36/0x2b40 linux/net/ipv4/udp.c:1250\n inet_sendmsg+0x105/0x140 linux/net/ipv4/af_inet.c:850\n sock_sendmsg_nosec linux/net/socket.c:730\n __sock_sendmsg linux/net/socket.c:745\n __sys_sendto+0x42c/0x4e0 linux/net/socket.c:2191\n __do_sys_sendto linux/net/socket.c:2203\n __se_sys_sendto linux/net/socket.c:2199\n __x64_sys_sendto+0xe0/0x1c0 linux/net/socket.c:2199\n do_syscall_x64 linux/arch/x86/entry/common.c:52\n do_syscall_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36886",
"url": "https://www.suse.com/security/cve/CVE-2024-36886"
},
{
"category": "external",
"summary": "SUSE Bug 1225730 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225730"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-36886",
"url": "https://bugzilla.suse.com/1225742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36886"
},
{
"cve": "CVE-2024-36905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets\n\nTCP_SYN_RECV state is really special, it is only used by\ncross-syn connections, mostly used by fuzzers.\n\nIn the following crash [1], syzbot managed to trigger a divide\nby zero in tcp_rcv_space_adjust()\n\nA socket makes the following state transitions,\nwithout ever calling tcp_init_transfer(),\nmeaning tcp_init_buffer_space() is also not called.\n\n TCP_CLOSE\nconnect()\n TCP_SYN_SENT\n TCP_SYN_RECV\nshutdown() -\u003e tcp_shutdown(sk, SEND_SHUTDOWN)\n TCP_FIN_WAIT1\n\nTo fix this issue, change tcp_shutdown() to not\nperform a TCP_SYN_RECV -\u003e TCP_FIN_WAIT1 transition,\nwhich makes no sense anyway.\n\nWhen tcp_rcv_state_process() later changes socket state\nfrom TCP_SYN_RECV to TCP_ESTABLISH, then look at\nsk-\u003esk_shutdown to finally enter TCP_FIN_WAIT1 state,\nand send a FIN packet from a sane socket state.\n\nThis means tcp_send_fin() can now be called from BH\ncontext, and must use GFP_ATOMIC allocations.\n\n[1]\ndivide error: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 1 PID: 5084 Comm: syz-executor358 Not tainted 6.9.0-rc6-syzkaller-00022-g98369dccd2f8 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024\n RIP: 0010:tcp_rcv_space_adjust+0x2df/0x890 net/ipv4/tcp_input.c:767\nCode: e3 04 4c 01 eb 48 8b 44 24 38 0f b6 04 10 84 c0 49 89 d5 0f 85 a5 03 00 00 41 8b 8e c8 09 00 00 89 e8 29 c8 48 0f af c3 31 d2 \u003c48\u003e f7 f1 48 8d 1c 43 49 8d 96 76 08 00 00 48 89 d0 48 c1 e8 03 48\nRSP: 0018:ffffc900031ef3f0 EFLAGS: 00010246\nRAX: 0c677a10441f8f42 RBX: 000000004fb95e7e RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: 0000000027d4b11f R08: ffffffff89e535a4 R09: 1ffffffff25e6ab7\nR10: dffffc0000000000 R11: ffffffff8135e920 R12: ffff88802a9f8d30\nR13: dffffc0000000000 R14: ffff88802a9f8d00 R15: 1ffff1100553f2da\nFS: 00005555775c0380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f1155bf2304 CR3: 000000002b9f2000 CR4: 0000000000350ef0\nCall Trace:\n \u003cTASK\u003e\n tcp_recvmsg_locked+0x106d/0x25a0 net/ipv4/tcp.c:2513\n tcp_recvmsg+0x25d/0x920 net/ipv4/tcp.c:2578\n inet6_recvmsg+0x16a/0x730 net/ipv6/af_inet6.c:680\n sock_recvmsg_nosec net/socket.c:1046 [inline]\n sock_recvmsg+0x109/0x280 net/socket.c:1068\n ____sys_recvmsg+0x1db/0x470 net/socket.c:2803\n ___sys_recvmsg net/socket.c:2845 [inline]\n do_recvmmsg+0x474/0xae0 net/socket.c:2939\n __sys_recvmmsg net/socket.c:3018 [inline]\n __do_sys_recvmmsg net/socket.c:3041 [inline]\n __se_sys_recvmmsg net/socket.c:3034 [inline]\n __x64_sys_recvmmsg+0x199/0x250 net/socket.c:3034\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7faeb6363db9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007ffcc1997168 EFLAGS: 00000246 ORIG_RAX: 000000000000012b\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007faeb6363db9\nRDX: 0000000000000001 RSI: 0000000020000bc0 RDI: 0000000000000005\nRBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000001c\nR10: 0000000000000122 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36905",
"url": "https://www.suse.com/security/cve/CVE-2024-36905"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-36905",
"url": "https://bugzilla.suse.com/1225742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36905"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-36954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: fix a possible memleak in tipc_buf_append\n\n__skb_linearize() doesn\u0027t free the skb when it fails, so move\n\u0027*buf = NULL\u0027 after __skb_linearize(), so that the skb can be\nfreed on the err path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36954",
"url": "https://www.suse.com/security/cve/CVE-2024-36954"
},
{
"category": "external",
"summary": "SUSE Bug 1225764 for CVE-2024-36954",
"url": "https://bugzilla.suse.com/1225764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-36954"
},
{
"cve": "CVE-2024-38577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38577"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow\n\nThere is a possibility of buffer overflow in\nshow_rcu_tasks_trace_gp_kthread() if counters, passed\nto sprintf() are huge. Counter numbers, needed for this\nare unrealistically high, but buffer overflow is still\npossible.\n\nUse snprintf() with buffer size instead of sprintf().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38577",
"url": "https://www.suse.com/security/cve/CVE-2024-38577"
},
{
"category": "external",
"summary": "SUSE Bug 1226631 for CVE-2024-38577",
"url": "https://bugzilla.suse.com/1226631"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-38577"
},
{
"cve": "CVE-2024-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetrom: fix possible dead-lock in nr_rt_ioctl()\n\nsyzbot loves netrom, and found a possible deadlock in nr_rt_ioctl [1]\n\nMake sure we always acquire nr_node_list_lock before nr_node_lock(nr_node)\n\n[1]\nWARNING: possible circular locking dependency detected\n6.9.0-rc7-syzkaller-02147-g654de42f3fc6 #0 Not tainted\n------------------------------------------------------\nsyz-executor350/5129 is trying to acquire lock:\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_node_lock include/net/netrom.h:152 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:464 [inline]\n ffff8880186e2070 (\u0026nr_node-\u003enode_lock){+...}-{2:2}, at: nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n\nbut task is already holding lock:\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_rt_ioctl+0x10a/0x1090 net/netrom/nr_route.c:697\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (nr_node_list_lock){+...}-{2:2}:\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_remove_node net/netrom/nr_route.c:299 [inline]\n nr_del_node+0x4b4/0x820 net/netrom/nr_route.c:355\n nr_rt_ioctl+0xa95/0x1090 net/netrom/nr_route.c:683\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n-\u003e #0 (\u0026nr_node-\u003enode_lock){+...}-{2:2}:\n check_prev_add kernel/locking/lockdep.c:3134 [inline]\n check_prevs_add kernel/locking/lockdep.c:3253 [inline]\n validate_chain+0x18cb/0x58e0 kernel/locking/lockdep.c:3869\n __lock_acquire+0x1346/0x1fd0 kernel/locking/lockdep.c:5137\n lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5754\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:126 [inline]\n _raw_spin_lock_bh+0x35/0x50 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:356 [inline]\n nr_node_lock include/net/netrom.h:152 [inline]\n nr_dec_obs net/netrom/nr_route.c:464 [inline]\n nr_rt_ioctl+0x1bb/0x1090 net/netrom/nr_route.c:697\n sock_do_ioctl+0x158/0x460 net/socket.c:1222\n sock_ioctl+0x629/0x8e0 net/socket.c:1341\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:904 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:890\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nother info that might help us debug this:\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n lock(nr_node_list_lock);\n lock(\u0026nr_node-\u003enode_lock);\n\n *** DEADLOCK ***\n\n1 lock held by syz-executor350/5129:\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: spin_lock_bh include/linux/spinlock.h:356 [inline]\n #0: ffffffff8f7053b8 (nr_node_list_lock){+...}-{2:2}, at: nr_dec_obs net/netrom/nr_route.c:462 [inline]\n #0: ffffffff8f70\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38589",
"url": "https://www.suse.com/security/cve/CVE-2024-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1226748 for CVE-2024-38589",
"url": "https://bugzilla.suse.com/1226748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-38589"
},
{
"cve": "CVE-2024-38615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38615"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: exit() callback is optional\n\nThe exit() callback is optional and shouldn\u0027t be called without checking\na valid pointer first.\n\nAlso, we must clear freq_table pointer even if the exit() callback isn\u0027t\npresent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38615",
"url": "https://www.suse.com/security/cve/CVE-2024-38615"
},
{
"category": "external",
"summary": "SUSE Bug 1226592 for CVE-2024-38615",
"url": "https://bugzilla.suse.com/1226592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-38615"
},
{
"cve": "CVE-2024-40997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: fix memory leak on CPU EPP exit\n\nThe cpudata memory from kzalloc() in amd_pstate_epp_cpu_init() is\nnot freed in the analogous exit function, so fix that.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40997",
"url": "https://www.suse.com/security/cve/CVE-2024-40997"
},
{
"category": "external",
"summary": "SUSE Bug 1227853 for CVE-2024-40997",
"url": "https://bugzilla.suse.com/1227853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-40997"
},
{
"cve": "CVE-2024-41016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()\n\nxattr in ocfs2 maybe \u0027non-indexed\u0027, which saved with additional space\nrequested. It\u0027s better to check if the memory is out of bound before\nmemcmp, although this possibility mainly comes from crafted poisonous\nimages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41016",
"url": "https://www.suse.com/security/cve/CVE-2024-41016"
},
{
"category": "external",
"summary": "SUSE Bug 1228410 for CVE-2024-41016",
"url": "https://bugzilla.suse.com/1228410"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-41016"
},
{
"cve": "CVE-2024-41023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/deadline: Fix task_struct reference leak\n\nDuring the execution of the following stress test with linux-rt:\n\nstress-ng --cyclic 30 --timeout 30 --minimize --quiet\n\nkmemleak frequently reported a memory leak concerning the task_struct:\n\nunreferenced object 0xffff8881305b8000 (size 16136):\n comm \"stress-ng\", pid 614, jiffies 4294883961 (age 286.412s)\n object hex dump (first 32 bytes):\n 02 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 .@..............\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n debug hex dump (first 16 bytes):\n 53 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 S...............\n backtrace:\n [\u003c00000000046b6790\u003e] dup_task_struct+0x30/0x540\n [\u003c00000000c5ca0f0b\u003e] copy_process+0x3d9/0x50e0\n [\u003c00000000ced59777\u003e] kernel_clone+0xb0/0x770\n [\u003c00000000a50befdc\u003e] __do_sys_clone+0xb6/0xf0\n [\u003c000000001dbf2008\u003e] do_syscall_64+0x5d/0xf0\n [\u003c00000000552900ff\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nThe issue occurs in start_dl_timer(), which increments the task_struct\nreference count and sets a timer. The timer callback, dl_task_timer,\nis supposed to decrement the reference count upon expiration. However,\nif enqueue_task_dl() is called before the timer expires and cancels it,\nthe reference count is not decremented, leading to the leak.\n\nThis patch fixes the reference leak by ensuring the task_struct\nreference count is properly decremented when the timer is canceled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41023",
"url": "https://www.suse.com/security/cve/CVE-2024-41023"
},
{
"category": "external",
"summary": "SUSE Bug 1228430 for CVE-2024-41023",
"url": "https://bugzilla.suse.com/1228430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-41023"
},
{
"cve": "CVE-2024-41049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfilelock: fix potential use-after-free in posix_lock_inode\n\nLight Hsieh reported a KASAN UAF warning in trace_posix_lock_inode().\nThe request pointer had been changed earlier to point to a lock entry\nthat was added to the inode\u0027s list. However, before the tracepoint could\nfire, another task raced in and freed that lock.\n\nFix this by moving the tracepoint inside the spinlock, which should\nensure that this doesn\u0027t happen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41049",
"url": "https://www.suse.com/security/cve/CVE-2024-41049"
},
{
"category": "external",
"summary": "SUSE Bug 1228486 for CVE-2024-41049",
"url": "https://bugzilla.suse.com/1228486"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-41049"
},
{
"cve": "CVE-2024-42131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: avoid overflows in dirty throttling logic\n\nThe dirty throttling logic is interspersed with assumptions that dirty\nlimits in PAGE_SIZE units fit into 32-bit (so that various multiplications\nfit into 64-bits). If limits end up being larger, we will hit overflows,\npossible divisions by 0 etc. Fix these problems by never allowing so\nlarge dirty limits as they have dubious practical value anyway. For\ndirty_bytes / dirty_background_bytes interfaces we can just refuse to set\nso large limits. For dirty_ratio / dirty_background_ratio it isn\u0027t so\nsimple as the dirty limit is computed from the amount of available memory\nwhich can change due to memory hotplug etc. So when converting dirty\nlimits from ratios to numbers of pages, we just don\u0027t allow the result to\nexceed UINT_MAX.\n\nThis is root-only triggerable problem which occurs when the operator\nsets dirty limits to \u003e16 TB.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42131",
"url": "https://www.suse.com/security/cve/CVE-2024-42131"
},
{
"category": "external",
"summary": "SUSE Bug 1228650 for CVE-2024-42131",
"url": "https://bugzilla.suse.com/1228650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-42131"
},
{
"cve": "CVE-2024-43817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: missing check virtio\n\nTwo missing check in virtio_net_hdr_to_skb() allowed syzbot\nto crash kernels again\n\n1. After the skb_segment function the buffer may become non-linear\n(nr_frags != 0), but since the SKBTX_SHARED_FRAG flag is not set anywhere\nthe __skb_linearize function will not be executed, then the buffer will\nremain non-linear. Then the condition (offset \u003e= skb_headlen(skb))\nbecomes true, which causes WARN_ON_ONCE in skb_checksum_help.\n\n2. The struct sk_buff and struct virtio_net_hdr members must be\nmathematically related.\n(gso_size) must be greater than (needed) otherwise WARN_ON_ONCE.\n(remainder) must be greater than (needed) otherwise WARN_ON_ONCE.\n(remainder) may be 0 if division is without remainder.\n\noffset+2 (4191) \u003e skb_headlen() (1116)\nWARNING: CPU: 1 PID: 5084 at net/core/dev.c:3303 skb_checksum_help+0x5e2/0x740 net/core/dev.c:3303\nModules linked in:\nCPU: 1 PID: 5084 Comm: syz-executor336 Not tainted 6.7.0-rc3-syzkaller-00014-gdf60cee26a2e #0\nHardware name: Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023\nRIP: 0010:skb_checksum_help+0x5e2/0x740 net/core/dev.c:3303\nCode: 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 52 01 00 00 44 89 e2 2b 53 74 4c 89 ee 48 c7 c7 40 57 e9 8b e8 af 8f dd f8 90 \u003c0f\u003e 0b 90 90 e9 87 fe ff ff e8 40 0f 6e f9 e9 4b fa ff ff 48 89 ef\nRSP: 0018:ffffc90003a9f338 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: ffff888025125780 RCX: ffffffff814db209\nRDX: ffff888015393b80 RSI: ffffffff814db216 RDI: 0000000000000001\nRBP: ffff8880251257f4 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000045c\nR13: 000000000000105f R14: ffff8880251257f0 R15: 000000000000105d\nFS: 0000555555c24380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000002000f000 CR3: 0000000023151000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ip_do_fragment+0xa1b/0x18b0 net/ipv4/ip_output.c:777\n ip_fragment.constprop.0+0x161/0x230 net/ipv4/ip_output.c:584\n ip_finish_output_gso net/ipv4/ip_output.c:286 [inline]\n __ip_finish_output net/ipv4/ip_output.c:308 [inline]\n __ip_finish_output+0x49c/0x650 net/ipv4/ip_output.c:295\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n ip_output+0x13b/0x2a0 net/ipv4/ip_output.c:433\n dst_output include/net/dst.h:451 [inline]\n ip_local_out+0xaf/0x1a0 net/ipv4/ip_output.c:129\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ipip6_tunnel_xmit net/ipv6/sit.c:1034 [inline]\n sit_tunnel_xmit+0xed2/0x28f0 net/ipv6/sit.c:1076\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3545 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3561\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4346\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n packet_xmit+0x257/0x380 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3087 [inline]\n packet_sendmsg+0x24ca/0x5240 net/packet/af_packet.c:3119\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0xd5/0x180 net/socket.c:745\n __sys_sendto+0x255/0x340 net/socket.c:2190\n __do_sys_sendto net/socket.c:2202 [inline]\n __se_sys_sendto net/socket.c:2198 [inline]\n __x64_sys_sendto+0xe0/0x1b0 net/socket.c:2198\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x40/0x110 arch/x86/entry/common.c:82\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43817",
"url": "https://www.suse.com/security/cve/CVE-2024-43817"
},
{
"category": "external",
"summary": "SUSE Bug 1229312 for CVE-2024-43817",
"url": "https://bugzilla.suse.com/1229312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-43817"
},
{
"cve": "CVE-2024-43897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43897"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: drop bad gso csum_start and offset in virtio_net_hdr\n\nTighten csum_start and csum_offset checks in virtio_net_hdr_to_skb\nfor GSO packets.\n\nThe function already checks that a checksum requested with\nVIRTIO_NET_HDR_F_NEEDS_CSUM is in skb linear. But for GSO packets\nthis might not hold for segs after segmentation.\n\nSyzkaller demonstrated to reach this warning in skb_checksum_help\n\n\toffset = skb_checksum_start_offset(skb);\n\tret = -EINVAL;\n\tif (WARN_ON_ONCE(offset \u003e= skb_headlen(skb)))\n\nBy injecting a TSO packet:\n\nWARNING: CPU: 1 PID: 3539 at net/core/dev.c:3284 skb_checksum_help+0x3d0/0x5b0\n ip_do_fragment+0x209/0x1b20 net/ipv4/ip_output.c:774\n ip_finish_output_gso net/ipv4/ip_output.c:279 [inline]\n __ip_finish_output+0x2bd/0x4b0 net/ipv4/ip_output.c:301\n iptunnel_xmit+0x50c/0x930 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x2296/0x2c70 net/ipv4/ip_tunnel.c:813\n __gre_xmit net/ipv4/ip_gre.c:469 [inline]\n ipgre_xmit+0x759/0xa60 net/ipv4/ip_gre.c:661\n __netdev_start_xmit include/linux/netdevice.h:4850 [inline]\n netdev_start_xmit include/linux/netdevice.h:4864 [inline]\n xmit_one net/core/dev.c:3595 [inline]\n dev_hard_start_xmit+0x261/0x8c0 net/core/dev.c:3611\n __dev_queue_xmit+0x1b97/0x3c90 net/core/dev.c:4261\n packet_snd net/packet/af_packet.c:3073 [inline]\n\nThe geometry of the bad input packet at tcp_gso_segment:\n\n[ 52.003050][ T8403] skb len=12202 headroom=244 headlen=12093 tailroom=0\n[ 52.003050][ T8403] mac=(168,24) mac_len=24 net=(192,52) trans=244\n[ 52.003050][ T8403] shinfo(txflags=0 nr_frags=1 gso(size=1552 type=3 segs=0))\n[ 52.003050][ T8403] csum(0x60000c7 start=199 offset=1536\nip_summed=3 complete_sw=0 valid=0 level=0)\n\nMitigate with stricter input validation.\n\ncsum_offset: for GSO packets, deduce the correct value from gso_type.\nThis is already done for USO. Extend it to TSO. Let UFO be:\nudp[46]_ufo_fragment ignores these fields and always computes the\nchecksum in software.\n\ncsum_start: finding the real offset requires parsing to the transport\nheader. Do not add a parser, use existing segmentation parsing. Thanks\nto SKB_GSO_DODGY, that also catches bad packets that are hw offloaded.\nAgain test both TSO and USO. Do not test UFO for the above reason, and\ndo not test UDP tunnel offload.\n\nGSO packet are almost always CHECKSUM_PARTIAL. USO packets may be\nCHECKSUM_NONE since commit 10154dbded6d6 (\"udp: Allow GSO transmit\nfrom devices with no checksum offload\"), but then still these fields\nare initialized correctly in udp4_hwcsum/udp6_hwcsum_outgoing. So no\nneed to test for ip_summed == CHECKSUM_PARTIAL first.\n\nThis revises an existing fix mentioned in the Fixes tag, which broke\nsmall packets with GSO offload, as detected by kselftests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43897",
"url": "https://www.suse.com/security/cve/CVE-2024-43897"
},
{
"category": "external",
"summary": "SUSE Bug 1229752 for CVE-2024-43897",
"url": "https://bugzilla.suse.com/1229752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-43897"
},
{
"cve": "CVE-2024-44932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix UAFs when destroying the queues\n\nThe second tagged commit started sometimes (very rarely, but possible)\nthrowing WARNs from\nnet/core/page_pool.c:page_pool_disable_direct_recycling().\nTurned out idpf frees interrupt vectors with embedded NAPIs *before*\nfreeing the queues making page_pools\u0027 NAPI pointers lead to freed\nmemory before these pools are destroyed by libeth.\nIt\u0027s not clear whether there are other accesses to the freed vectors\nwhen destroying the queues, but anyway, we usually free queue/interrupt\nvectors only when the queues are destroyed and the NAPIs are guaranteed\nto not be referenced anywhere.\n\nInvert the allocation and freeing logic making queue/interrupt vectors\nbe allocated first and freed last. Vectors don\u0027t require queues to be\npresent, so this is safe. Additionally, this change allows to remove\nthat useless queue-\u003eq_vector pointer cleanup, as vectors are still\nvalid when freeing the queues (+ both are freed within one function,\nso it\u0027s not clear why nullify the pointers at all).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44932",
"url": "https://www.suse.com/security/cve/CVE-2024-44932"
},
{
"category": "external",
"summary": "SUSE Bug 1229808 for CVE-2024-44932",
"url": "https://bugzilla.suse.com/1229808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-44932"
},
{
"cve": "CVE-2024-44964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix memory leaks and crashes while performing a soft reset\n\nThe second tagged commit introduced a UAF, as it removed restoring\nq_vector-\u003evport pointers after reinitializating the structures.\nThis is due to that all queue allocation functions are performed here\nwith the new temporary vport structure and those functions rewrite\nthe backpointers to the vport. Then, this new struct is freed and\nthe pointers start leading to nowhere.\n\nBut generally speaking, the current logic is very fragile. It claims\nto be more reliable when the system is low on memory, but in fact, it\nconsumes two times more memory as at the moment of running this\nfunction, there are two vports allocated with their queues and vectors.\nMoreover, it claims to prevent the driver from running into \"bad state\",\nbut in fact, any error during the rebuild leaves the old vport in the\npartially allocated state.\nFinally, if the interface is down when the function is called, it always\nallocates a new queue set, but when the user decides to enable the\ninterface later on, vport_open() allocates them once again, IOW there\u0027s\na clear memory leak here.\n\nJust don\u0027t allocate a new queue set when performing a reset, that solves\ncrashes and memory leaks. Readd the old queue number and reopen the\ninterface on rollback - that solves limbo states when the device is left\ndisabled and/or without HW queues enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44964",
"url": "https://www.suse.com/security/cve/CVE-2024-44964"
},
{
"category": "external",
"summary": "SUSE Bug 1230220 for CVE-2024-44964",
"url": "https://bugzilla.suse.com/1230220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-44964"
},
{
"cve": "CVE-2024-44995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix a deadlock problem when config TC during resetting\n\nWhen config TC during the reset process, may cause a deadlock, the flow is\nas below:\n pf reset start\n |\n \u25bc\n ......\nsetup tc |\n | \u25bc\n \u25bc DOWN: napi_disable()\nnapi_disable()(skip) |\n | |\n \u25bc \u25bc\n ...... ......\n | |\n \u25bc |\nnapi_enable() |\n \u25bc\n UINIT: netif_napi_del()\n |\n \u25bc\n ......\n |\n \u25bc\n INIT: netif_napi_add()\n |\n \u25bc\n ...... global reset start\n | |\n \u25bc \u25bc\n UP: napi_enable()(skip) ......\n | |\n \u25bc \u25bc\n ...... napi_disable()\n\nIn reset process, the driver will DOWN the port and then UINIT, in this\ncase, the setup tc process will UP the port before UINIT, so cause the\nproblem. Adds a DOWN process in UINIT to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44995",
"url": "https://www.suse.com/security/cve/CVE-2024-44995"
},
{
"category": "external",
"summary": "SUSE Bug 1230231 for CVE-2024-44995",
"url": "https://bugzilla.suse.com/1230231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-44995"
},
{
"cve": "CVE-2024-46681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46681"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npktgen: use cpus_read_lock() in pg_net_init()\n\nI have seen the WARN_ON(smp_processor_id() != cpu) firing\nin pktgen_thread_worker() during tests.\n\nWe must use cpus_read_lock()/cpus_read_unlock()\naround the for_each_online_cpu(cpu) loop.\n\nWhile we are at it use WARN_ON_ONCE() to avoid a possible syslog flood.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46681",
"url": "https://www.suse.com/security/cve/CVE-2024-46681"
},
{
"category": "external",
"summary": "SUSE Bug 1230558 for CVE-2024-46681",
"url": "https://bugzilla.suse.com/1230558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46681"
},
{
"cve": "CVE-2024-46800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsch/netem: fix use after free in netem_dequeue\n\nIf netem_dequeue() enqueues packet to inner qdisc and that qdisc\nreturns __NET_XMIT_STOLEN. The packet is dropped but\nqdisc_tree_reduce_backlog() is not called to update the parent\u0027s\nq.qlen, leading to the similar use-after-free as Commit\ne04991a48dbaf382 (\"netem: fix return value if duplicate enqueue\nfails\")\n\nCommands to trigger KASAN UaF:\n\nip link add type dummy\nip link set lo up\nip link set dummy0 up\ntc qdisc add dev lo parent root handle 1: drr\ntc filter add dev lo parent 1: basic classid 1:1\ntc class add dev lo classid 1:1 drr\ntc qdisc add dev lo parent 1:1 handle 2: netem\ntc qdisc add dev lo parent 2: handle 3: drr\ntc filter add dev lo parent 3: basic classid 3:1 action mirred egress\nredirect dev dummy0\ntc class add dev lo classid 3:1 drr\nping -c1 -W0.01 localhost # Trigger bug\ntc class del dev lo classid 1:1\ntc class add dev lo classid 1:1 drr\nping -c1 -W0.01 localhost # UaF",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46800",
"url": "https://www.suse.com/security/cve/CVE-2024-46800"
},
{
"category": "external",
"summary": "SUSE Bug 1230827 for CVE-2024-46800",
"url": "https://bugzilla.suse.com/1230827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46800"
},
{
"cve": "CVE-2024-46802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: added NULL check at start of dc_validate_stream\n\n[Why]\nprevent invalid memory access\n\n[How]\ncheck if dc and stream are NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46802",
"url": "https://www.suse.com/security/cve/CVE-2024-46802"
},
{
"category": "external",
"summary": "SUSE Bug 1231111 for CVE-2024-46802",
"url": "https://bugzilla.suse.com/1231111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46802"
},
{
"cve": "CVE-2024-46804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add array index check for hdcp ddc access\n\n[Why]\nCoverity reports OVERRUN warning. Do not check if array\nindex valid.\n\n[How]\nCheck msg_id valid and valid array index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46804",
"url": "https://www.suse.com/security/cve/CVE-2024-46804"
},
{
"category": "external",
"summary": "SUSE Bug 1231132 for CVE-2024-46804",
"url": "https://bugzilla.suse.com/1231132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46804"
},
{
"cve": "CVE-2024-46805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46805"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix the waring dereferencing hive\n\nCheck the amdgpu_hive_info *hive that maybe is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46805",
"url": "https://www.suse.com/security/cve/CVE-2024-46805"
},
{
"category": "external",
"summary": "SUSE Bug 1231135 for CVE-2024-46805",
"url": "https://bugzilla.suse.com/1231135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46805"
},
{
"cve": "CVE-2024-46807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/amdgpu: Check tbo resource pointer\n\nValidate tbo resource pointer, skip if NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46807",
"url": "https://www.suse.com/security/cve/CVE-2024-46807"
},
{
"category": "external",
"summary": "SUSE Bug 1231138 for CVE-2024-46807",
"url": "https://bugzilla.suse.com/1231138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46807"
},
{
"cve": "CVE-2024-46810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ\n\nMake sure the connector is fully initialized before signalling any\nHPD events via drm_kms_helper_hotplug_event(), otherwise this may\nlead to NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46810",
"url": "https://www.suse.com/security/cve/CVE-2024-46810"
},
{
"category": "external",
"summary": "SUSE Bug 1231178 for CVE-2024-46810",
"url": "https://bugzilla.suse.com/1231178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46810"
},
{
"cve": "CVE-2024-46812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46812"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration\n\n[Why]\nCoverity reports Memory - illegal accesses.\n\n[How]\nSkip inactive planes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46812",
"url": "https://www.suse.com/security/cve/CVE-2024-46812"
},
{
"category": "external",
"summary": "SUSE Bug 1231187 for CVE-2024-46812",
"url": "https://bugzilla.suse.com/1231187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46812"
},
{
"cve": "CVE-2024-46819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: the warning dereferencing obj for nbio_v7_4\n\nif ras_manager obj null, don\u0027t print NBIO err data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46819",
"url": "https://www.suse.com/security/cve/CVE-2024-46819"
},
{
"category": "external",
"summary": "SUSE Bug 1231202 for CVE-2024-46819",
"url": "https://bugzilla.suse.com/1231202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46819"
},
{
"cve": "CVE-2024-46821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Fix negative array index read\n\nAvoid using the negative values\nfor clk_idex as an index into an array pptable-\u003eDpmDescriptor.\n\nV2: fix clk_index return check (Tim Huang)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46821",
"url": "https://www.suse.com/security/cve/CVE-2024-46821"
},
{
"category": "external",
"summary": "SUSE Bug 1231169 for CVE-2024-46821",
"url": "https://bugzilla.suse.com/1231169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46821"
},
{
"cve": "CVE-2024-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix smatch static checker warning\n\nadev-\u003egfx.imu.funcs could be NULL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46835",
"url": "https://www.suse.com/security/cve/CVE-2024-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1231098 for CVE-2024-46835",
"url": "https://bugzilla.suse.com/1231098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46835"
},
{
"cve": "CVE-2024-46842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info\n\nThe MBX_TIMEOUT return code is not handled in lpfc_get_sfp_info and the\nroutine unconditionally frees submitted mailbox commands regardless of\nreturn status. The issue is that for MBX_TIMEOUT cases, when firmware\nreturns SFP information at a later time, that same mailbox memory region\nreferences previously freed memory in its cmpl routine.\n\nFix by adding checks for the MBX_TIMEOUT return code. During mailbox\nresource cleanup, check the mbox flag to make sure that the wait did not\ntimeout. If the MBOX_WAKE flag is not set, then do not free the resources\nbecause it will be freed when firmware completes the mailbox at a later\ntime in its cmpl routine.\n\nAlso, increase the timeout from 30 to 60 seconds to accommodate boot\nscripts requiring longer timeouts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46842",
"url": "https://www.suse.com/security/cve/CVE-2024-46842"
},
{
"category": "external",
"summary": "SUSE Bug 1231101 for CVE-2024-46842",
"url": "https://bugzilla.suse.com/1231101"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46842"
},
{
"cve": "CVE-2024-46853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46853"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: nxp-fspi: fix the KASAN report out-of-bounds bug\n\nChange the memcpy length to fix the out-of-bounds issue when writing the\ndata that is not 4 byte aligned to TX FIFO.\n\nTo reproduce the issue, write 3 bytes data to NOR chip.\n\ndd if=3b of=/dev/mtd0\n[ 36.926103] ==================================================================\n[ 36.933409] BUG: KASAN: slab-out-of-bounds in nxp_fspi_exec_op+0x26ec/0x2838\n[ 36.940514] Read of size 4 at addr ffff00081037c2a0 by task dd/455\n[ 36.946721]\n[ 36.948235] CPU: 3 UID: 0 PID: 455 Comm: dd Not tainted 6.11.0-rc5-gc7b0e37c8434 #1070\n[ 36.956185] Hardware name: Freescale i.MX8QM MEK (DT)\n[ 36.961260] Call trace:\n[ 36.963723] dump_backtrace+0x90/0xe8\n[ 36.967414] show_stack+0x18/0x24\n[ 36.970749] dump_stack_lvl+0x78/0x90\n[ 36.974451] print_report+0x114/0x5cc\n[ 36.978151] kasan_report+0xa4/0xf0\n[ 36.981670] __asan_report_load_n_noabort+0x1c/0x28\n[ 36.986587] nxp_fspi_exec_op+0x26ec/0x2838\n[ 36.990800] spi_mem_exec_op+0x8ec/0xd30\n[ 36.994762] spi_mem_no_dirmap_read+0x190/0x1e0\n[ 36.999323] spi_mem_dirmap_write+0x238/0x32c\n[ 37.003710] spi_nor_write_data+0x220/0x374\n[ 37.007932] spi_nor_write+0x110/0x2e8\n[ 37.011711] mtd_write_oob_std+0x154/0x1f0\n[ 37.015838] mtd_write_oob+0x104/0x1d0\n[ 37.019617] mtd_write+0xb8/0x12c\n[ 37.022953] mtdchar_write+0x224/0x47c\n[ 37.026732] vfs_write+0x1e4/0x8c8\n[ 37.030163] ksys_write+0xec/0x1d0\n[ 37.033586] __arm64_sys_write+0x6c/0x9c\n[ 37.037539] invoke_syscall+0x6c/0x258\n[ 37.041327] el0_svc_common.constprop.0+0x160/0x22c\n[ 37.046244] do_el0_svc+0x44/0x5c\n[ 37.049589] el0_svc+0x38/0x78\n[ 37.052681] el0t_64_sync_handler+0x13c/0x158\n[ 37.057077] el0t_64_sync+0x190/0x194\n[ 37.060775]\n[ 37.062274] Allocated by task 455:\n[ 37.065701] kasan_save_stack+0x2c/0x54\n[ 37.069570] kasan_save_track+0x20/0x3c\n[ 37.073438] kasan_save_alloc_info+0x40/0x54\n[ 37.077736] __kasan_kmalloc+0xa0/0xb8\n[ 37.081515] __kmalloc_noprof+0x158/0x2f8\n[ 37.085563] mtd_kmalloc_up_to+0x120/0x154\n[ 37.089690] mtdchar_write+0x130/0x47c\n[ 37.093469] vfs_write+0x1e4/0x8c8\n[ 37.096901] ksys_write+0xec/0x1d0\n[ 37.100332] __arm64_sys_write+0x6c/0x9c\n[ 37.104287] invoke_syscall+0x6c/0x258\n[ 37.108064] el0_svc_common.constprop.0+0x160/0x22c\n[ 37.112972] do_el0_svc+0x44/0x5c\n[ 37.116319] el0_svc+0x38/0x78\n[ 37.119401] el0t_64_sync_handler+0x13c/0x158\n[ 37.123788] el0t_64_sync+0x190/0x194\n[ 37.127474]\n[ 37.128977] The buggy address belongs to the object at ffff00081037c2a0\n[ 37.128977] which belongs to the cache kmalloc-8 of size 8\n[ 37.141177] The buggy address is located 0 bytes inside of\n[ 37.141177] allocated 3-byte region [ffff00081037c2a0, ffff00081037c2a3)\n[ 37.153465]\n[ 37.154971] The buggy address belongs to the physical page:\n[ 37.160559] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x89037c\n[ 37.168596] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)\n[ 37.175149] page_type: 0xfdffffff(slab)\n[ 37.179021] raw: 0bfffe0000000000 ffff000800002500 dead000000000122 0000000000000000\n[ 37.186788] raw: 0000000000000000 0000000080800080 00000001fdffffff 0000000000000000\n[ 37.194553] page dumped because: kasan: bad access detected\n[ 37.200144]\n[ 37.201647] Memory state around the buggy address:\n[ 37.206460] ffff00081037c180: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc\n[ 37.213701] ffff00081037c200: fa fc fc fc 05 fc fc fc 03 fc fc fc 02 fc fc fc\n[ 37.220946] \u003effff00081037c280: 06 fc fc fc 03 fc fc fc fc fc fc fc fc fc fc fc\n[ 37.228186] ^\n[ 37.232473] ffff00081037c300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n[ 37.239718] ffff00081037c380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n[ 37.246962] ==============================================================\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46853",
"url": "https://www.suse.com/security/cve/CVE-2024-46853"
},
{
"category": "external",
"summary": "SUSE Bug 1231083 for CVE-2024-46853",
"url": "https://bugzilla.suse.com/1231083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46853"
},
{
"cve": "CVE-2024-46859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46859"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: panasonic-laptop: Fix SINF array out of bounds accesses\n\nThe panasonic laptop code in various places uses the SINF array with index\nvalues of 0 - SINF_CUR_BRIGHT(0x0d) without checking that the SINF array\nis big enough.\n\nNot all panasonic laptops have this many SINF array entries, for example\nthe Toughbook CF-18 model only has 10 SINF array entries. So it only\nsupports the AC+DC brightness entries and mute.\n\nCheck that the SINF array has a minimum size which covers all AC+DC\nbrightness entries and refuse to load if the SINF array is smaller.\n\nFor higher SINF indexes hide the sysfs attributes when the SINF array\ndoes not contain an entry for that attribute, avoiding show()/store()\naccessing the array out of bounds and add bounds checking to the probe()\nand resume() code accessing these.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46859",
"url": "https://www.suse.com/security/cve/CVE-2024-46859"
},
{
"category": "external",
"summary": "SUSE Bug 1231089 for CVE-2024-46859",
"url": "https://bugzilla.suse.com/1231089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46859"
},
{
"cve": "CVE-2024-46864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: fix kexec crash due to VP assist page corruption\n\ncommit 9636be85cc5b (\"x86/hyperv: Fix hyperv_pcpu_input_arg handling when\nCPUs go online/offline\") introduces a new cpuhp state for hyperv\ninitialization.\n\ncpuhp_setup_state() returns the state number if state is\nCPUHP_AP_ONLINE_DYN or CPUHP_BP_PREPARE_DYN and 0 for all other states.\nFor the hyperv case, since a new cpuhp state was introduced it would\nreturn 0. However, in hv_machine_shutdown(), the cpuhp_remove_state() call\nis conditioned upon \"hyperv_init_cpuhp \u003e 0\". This will never be true and\nso hv_cpu_die() won\u0027t be called on all CPUs. This means the VP assist page\nwon\u0027t be reset. When the kexec kernel tries to setup the VP assist page\nagain, the hypervisor corrupts the memory region of the old VP assist page\ncausing a panic in case the kexec kernel is using that memory elsewhere.\nThis was originally fixed in commit dfe94d4086e4 (\"x86/hyperv: Fix kexec\npanic/hang issues\").\n\nGet rid of hyperv_init_cpuhp entirely since we are no longer using a\ndynamic cpuhp state and use CPUHP_AP_HYPERV_ONLINE directly with\ncpuhp_remove_state().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46864",
"url": "https://www.suse.com/security/cve/CVE-2024-46864"
},
{
"category": "external",
"summary": "SUSE Bug 1231108 for CVE-2024-46864",
"url": "https://bugzilla.suse.com/1231108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46864"
},
{
"cve": "CVE-2024-46871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX\n\n[Why \u0026 How]\nIt actually exposes \u00276\u0027 types in enum dmub_notification_type. Not 5. Using smaller\nnumber to create array dmub_callback \u0026 dmub_thread_offload has potential to access\nitem out of array bound. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46871",
"url": "https://www.suse.com/security/cve/CVE-2024-46871"
},
{
"category": "external",
"summary": "SUSE Bug 1231434 for CVE-2024-46871",
"url": "https://bugzilla.suse.com/1231434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-46871"
},
{
"cve": "CVE-2024-47663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47663"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9834: Validate frequency parameter value\n\nIn ad9834_write_frequency() clk_get_rate() can return 0. In such case\nad9834_calc_freqreg() call will lead to division by zero. Checking\n\u0027if (fout \u003e (clk_freq / 2))\u0027 doesn\u0027t protect in case of \u0027fout\u0027 is 0.\nad9834_write_frequency() is called from ad9834_write(), where fout is\ntaken from text buffer, which can contain any value.\n\nModify parameters checking.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47663",
"url": "https://www.suse.com/security/cve/CVE-2024-47663"
},
{
"category": "external",
"summary": "SUSE Bug 1231441 for CVE-2024-47663",
"url": "https://bugzilla.suse.com/1231441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47663"
},
{
"cve": "CVE-2024-47665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47665"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup\n\nDefinitely condition dma_get_cache_alignment * defined value \u003e 256\nduring driver initialization is not reason to BUG_ON(). Turn that to\ngraceful error out with -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47665",
"url": "https://www.suse.com/security/cve/CVE-2024-47665"
},
{
"category": "external",
"summary": "SUSE Bug 1231452 for CVE-2024-47665",
"url": "https://bugzilla.suse.com/1231452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47665"
},
{
"cve": "CVE-2024-47667",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47667"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)\n\nErrata #i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0\n(SPRZ452D_July 2018_Revised December 2019 [1]) mentions when an\ninbound PCIe TLP spans more than two internal AXI 128-byte bursts,\nthe bus may corrupt the packet payload and the corrupt data may\ncause associated applications or the processor to hang.\n\nThe workaround for Errata #i2037 is to limit the maximum read\nrequest size and maximum payload size to 128 bytes. Add workaround\nfor Errata #i2037 here.\n\nThe errata and workaround is applicable only to AM65x SR 1.0 and\nlater versions of the silicon will have this fixed.\n\n[1] -\u003e https://www.ti.com/lit/er/sprz452i/sprz452i.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47667",
"url": "https://www.suse.com/security/cve/CVE-2024-47667"
},
{
"category": "external",
"summary": "SUSE Bug 1231481 for CVE-2024-47667",
"url": "https://bugzilla.suse.com/1231481"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47667"
},
{
"cve": "CVE-2024-47669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47669"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix state management in error path of log writing function\n\nAfter commit a694291a6211 (\"nilfs2: separate wait function from\nnilfs_segctor_write\") was applied, the log writing function\nnilfs_segctor_do_construct() was able to issue I/O requests continuously\neven if user data blocks were split into multiple logs across segments,\nbut two potential flaws were introduced in its error handling.\n\nFirst, if nilfs_segctor_begin_construction() fails while creating the\nsecond or subsequent logs, the log writing function returns without\ncalling nilfs_segctor_abort_construction(), so the writeback flag set on\npages/folios will remain uncleared. This causes page cache operations to\nhang waiting for the writeback flag. For example,\ntruncate_inode_pages_final(), which is called via nilfs_evict_inode() when\nan inode is evicted from memory, will hang.\n\nSecond, the NILFS_I_COLLECTED flag set on normal inodes remain uncleared. \nAs a result, if the next log write involves checkpoint creation, that\u0027s\nfine, but if a partial log write is performed that does not, inodes with\nNILFS_I_COLLECTED set are erroneously removed from the \"sc_dirty_files\"\nlist, and their data and b-tree blocks may not be written to the device,\ncorrupting the block mapping.\n\nFix these issues by uniformly calling nilfs_segctor_abort_construction()\non failure of each step in the loop in nilfs_segctor_do_construct(),\nhaving it clean up logs and segment usages according to progress, and\ncorrecting the conditions for calling nilfs_redirty_inodes() to ensure\nthat the NILFS_I_COLLECTED flag is cleared.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47669",
"url": "https://www.suse.com/security/cve/CVE-2024-47669"
},
{
"category": "external",
"summary": "SUSE Bug 1231474 for CVE-2024-47669",
"url": "https://bugzilla.suse.com/1231474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47669"
},
{
"cve": "CVE-2024-47670",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47670"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: add bounds checking to ocfs2_xattr_find_entry()\n\nAdd a paranoia check to make sure it doesn\u0027t stray beyond valid memory\nregion containing ocfs2 xattr entries when scanning for a match. It will\nprevent out-of-bound access in case of crafted images.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47670",
"url": "https://www.suse.com/security/cve/CVE-2024-47670"
},
{
"category": "external",
"summary": "SUSE Bug 1231537 for CVE-2024-47670",
"url": "https://bugzilla.suse.com/1231537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47670"
},
{
"cve": "CVE-2024-47671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47671"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usbtmc: prevent kernel-usb-infoleak\n\nThe syzbot reported a kernel-usb-infoleak in usbtmc_write,\nwe need to clear the structure before filling fields.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47671",
"url": "https://www.suse.com/security/cve/CVE-2024-47671"
},
{
"category": "external",
"summary": "SUSE Bug 1231541 for CVE-2024-47671",
"url": "https://bugzilla.suse.com/1231541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47671"
},
{
"cve": "CVE-2024-47679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: fix race between evice_inodes() and find_inode()\u0026iput()\n\nHi, all\n\nRecently I noticed a bug[1] in btrfs, after digged it into\nand I believe it\u0027a race in vfs.\n\nLet\u0027s assume there\u0027s a inode (ie ino 261) with i_count 1 is\ncalled by iput(), and there\u0027s a concurrent thread calling\ngeneric_shutdown_super().\n\ncpu0: cpu1:\niput() // i_count is 1\n -\u003espin_lock(inode)\n -\u003edec i_count to 0\n -\u003eiput_final() generic_shutdown_super()\n -\u003e__inode_add_lru() -\u003eevict_inodes()\n // cause some reason[2] -\u003eif (atomic_read(inode-\u003ei_count)) continue;\n // return before // inode 261 passed the above check\n // list_lru_add_obj() // and then schedule out\n -\u003espin_unlock()\n// note here: the inode 261\n// was still at sb list and hash list,\n// and I_FREEING|I_WILL_FREE was not been set\n\nbtrfs_iget()\n // after some function calls\n -\u003efind_inode()\n // found the above inode 261\n -\u003espin_lock(inode)\n // check I_FREEING|I_WILL_FREE\n // and passed\n -\u003e__iget()\n -\u003espin_unlock(inode) // schedule back\n -\u003espin_lock(inode)\n // check (I_NEW|I_FREEING|I_WILL_FREE) flags,\n // passed and set I_FREEING\niput() -\u003espin_unlock(inode)\n -\u003espin_lock(inode)\t\t\t -\u003eevict()\n // dec i_count to 0\n -\u003eiput_final()\n -\u003espin_unlock()\n -\u003eevict()\n\nNow, we have two threads simultaneously evicting\nthe same inode, which may trigger the BUG(inode-\u003ei_state \u0026 I_CLEAR)\nstatement both within clear_inode() and iput().\n\nTo fix the bug, recheck the inode-\u003ei_count after holding i_lock.\nBecause in the most scenarios, the first check is valid, and\nthe overhead of spin_lock() can be reduced.\n\nIf there is any misunderstanding, please let me know, thanks.\n\n[1]: https://lore.kernel.org/linux-btrfs/000000000000eabe1d0619c48986@google.com/\n[2]: The reason might be 1. SB_ACTIVE was removed or 2. mapping_shrinkable()\nreturn false when I reproduced the bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47679",
"url": "https://www.suse.com/security/cve/CVE-2024-47679"
},
{
"category": "external",
"summary": "SUSE Bug 1231930 for CVE-2024-47679",
"url": "https://bugzilla.suse.com/1231930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47679"
},
{
"cve": "CVE-2024-47682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47682"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sd: Fix off-by-one error in sd_read_block_characteristics()\n\nFf the device returns page 0xb1 with length 8 (happens with qemu v2.x, for\nexample), sd_read_block_characteristics() may attempt an out-of-bounds\nmemory access when accessing the zoned field at offset 8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47682",
"url": "https://www.suse.com/security/cve/CVE-2024-47682"
},
{
"category": "external",
"summary": "SUSE Bug 1231856 for CVE-2024-47682",
"url": "https://bugzilla.suse.com/1231856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47682"
},
{
"cve": "CVE-2024-47693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix ib_cache_setup_one error flow cleanup\n\nWhen ib_cache_update return an error, we exit ib_cache_setup_one\ninstantly with no proper cleanup, even though before this we had\nalready successfully done gid_table_setup_one, that results in\nthe kernel WARN below.\n\nDo proper cleanup using gid_table_cleanup_one before returning\nthe err in order to fix the issue.\n\nWARNING: CPU: 4 PID: 922 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x181/0x1a0\nModules linked in:\nCPU: 4 UID: 0 PID: 922 Comm: c_repro Not tainted 6.11.0-rc1+ #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:gid_table_release_one+0x181/0x1a0\nCode: 44 8b 38 75 0c e8 2f cb 34 ff 4d 8b b5 28 05 00 00 e8 23 cb 34 ff 44 89 f9 89 da 4c 89 f6 48 c7 c7 d0 58 14 83 e8 4f de 21 ff \u003c0f\u003e 0b 4c 8b 75 30 e9 54 ff ff ff 48 8 3 c4 10 5b 5d 41 5c 41 5d 41\nRSP: 0018:ffffc90002b835b0 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff811c8527\nRDX: 0000000000000000 RSI: ffffffff811c8534 RDI: 0000000000000001\nRBP: ffff8881011b3d00 R08: ffff88810b3abe00 R09: 205d303839303631\nR10: 666572207972746e R11: 72746e6520444947 R12: 0000000000000001\nR13: ffff888106390000 R14: ffff8881011f2110 R15: 0000000000000001\nFS: 00007fecc3b70800(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000340 CR3: 000000010435a001 CR4: 00000000003706b0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x94/0xa0\n ? __warn+0x9e/0x1c0\n ? gid_table_release_one+0x181/0x1a0\n ? report_bug+0x1f9/0x340\n ? gid_table_release_one+0x181/0x1a0\n ? handle_bug+0xa2/0x110\n ? exc_invalid_op+0x31/0xa0\n ? asm_exc_invalid_op+0x16/0x20\n ? __warn_printk+0xc7/0x180\n ? __warn_printk+0xd4/0x180\n ? gid_table_release_one+0x181/0x1a0\n ib_device_release+0x71/0xe0\n ? __pfx_ib_device_release+0x10/0x10\n device_release+0x44/0xd0\n kobject_put+0x135/0x3d0\n put_device+0x20/0x30\n rxe_net_add+0x7d/0xa0\n rxe_newlink+0xd7/0x190\n nldev_newlink+0x1b0/0x2a0\n ? __pfx_nldev_newlink+0x10/0x10\n rdma_nl_rcv_msg+0x1ad/0x2e0\n rdma_nl_rcv_skb.constprop.0+0x176/0x210\n netlink_unicast+0x2de/0x400\n netlink_sendmsg+0x306/0x660\n __sock_sendmsg+0x110/0x120\n ____sys_sendmsg+0x30e/0x390\n ___sys_sendmsg+0x9b/0xf0\n ? kstrtouint+0x6e/0xa0\n ? kstrtouint_from_user+0x7c/0xb0\n ? get_pid_task+0xb0/0xd0\n ? proc_fail_nth_write+0x5b/0x140\n ? __fget_light+0x9a/0x200\n ? preempt_count_add+0x47/0xa0\n __sys_sendmsg+0x61/0xd0\n do_syscall_64+0x50/0x110\n entry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47693",
"url": "https://www.suse.com/security/cve/CVE-2024-47693"
},
{
"category": "external",
"summary": "SUSE Bug 1232013 for CVE-2024-47693",
"url": "https://bugzilla.suse.com/1232013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47693"
},
{
"cve": "CVE-2024-47695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds\n\nIn the function init_conns(), after the create_con() and create_cm() for\nloop if something fails. In the cleanup for loop after the destroy tag, we\naccess out of bound memory because cid is set to clt_path-\u003es.con_num.\n\nThis commits resets the cid to clt_path-\u003es.con_num - 1, to stay in bounds\nin the cleanup loop later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47695",
"url": "https://www.suse.com/security/cve/CVE-2024-47695"
},
{
"category": "external",
"summary": "SUSE Bug 1231931 for CVE-2024-47695",
"url": "https://bugzilla.suse.com/1231931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47695"
},
{
"cve": "CVE-2024-47696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47696"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency\n\nIn the commit aee2424246f9 (\"RDMA/iwcm: Fix a use-after-free related to\ndestroying CM IDs\"), the function flush_workqueue is invoked to flush the\nwork queue iwcm_wq.\n\nBut at that time, the work queue iwcm_wq was created via the function\nalloc_ordered_workqueue without the flag WQ_MEM_RECLAIM.\n\nBecause the current process is trying to flush the whole iwcm_wq, if\niwcm_wq doesn\u0027t have the flag WQ_MEM_RECLAIM, verify that the current\nprocess is not reclaiming memory or running on a workqueue which doesn\u0027t\nhave the flag WQ_MEM_RECLAIM as that can break forward-progress guarantee\nleading to a deadlock.\n\nThe call trace is as below:\n\n[ 125.350876][ T1430] Call Trace:\n[ 125.356281][ T1430] \u003cTASK\u003e\n[ 125.361285][ T1430] ? __warn (kernel/panic.c:693)\n[ 125.367640][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.375689][ T1430] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 125.382505][ T1430] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 125.388987][ T1430] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 125.395831][ T1430] ? asm_exc_invalid_op (arch/x86/include/asm/idtentry.h:621)\n[ 125.403125][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.410984][ T1430] ? check_flush_dependency (kernel/workqueue.c:3706 (discriminator 9))\n[ 125.418764][ T1430] __flush_workqueue (kernel/workqueue.c:3970)\n[ 125.426021][ T1430] ? __pfx___might_resched (kernel/sched/core.c:10151)\n[ 125.433431][ T1430] ? destroy_cm_id (drivers/infiniband/core/iwcm.c:375) iw_cm\n[ 125.441209][ T1430] ? __pfx___flush_workqueue (kernel/workqueue.c:3910)\n[ 125.473900][ T1430] ? _raw_spin_lock_irqsave (arch/x86/include/asm/atomic.h:107 include/linux/atomic/atomic-arch-fallback.h:2170 include/linux/atomic/atomic-instrumented.h:1302 include/asm-generic/qspinlock.h:111 include/linux/spinlock.h:187 include/linux/spinlock_api_smp.h:111 kernel/locking/spinlock.c:162)\n[ 125.473909][ T1430] ? __pfx__raw_spin_lock_irqsave (kernel/locking/spinlock.c:161)\n[ 125.482537][ T1430] _destroy_id (drivers/infiniband/core/cma.c:2044) rdma_cm\n[ 125.495072][ T1430] nvme_rdma_free_queue (drivers/nvme/host/rdma.c:656 drivers/nvme/host/rdma.c:650) nvme_rdma\n[ 125.505827][ T1430] nvme_rdma_reset_ctrl_work (drivers/nvme/host/rdma.c:2180) nvme_rdma\n[ 125.505831][ T1430] process_one_work (kernel/workqueue.c:3231)\n[ 125.515122][ T1430] worker_thread (kernel/workqueue.c:3306 kernel/workqueue.c:3393)\n[ 125.515127][ T1430] ? __pfx_worker_thread (kernel/workqueue.c:3339)\n[ 125.531837][ T1430] kthread (kernel/kthread.c:389)\n[ 125.539864][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.550628][ T1430] ret_from_fork (arch/x86/kernel/process.c:147)\n[ 125.558840][ T1430] ? __pfx_kthread (kernel/kthread.c:342)\n[ 125.558844][ T1430] ret_from_fork_asm (arch/x86/entry/entry_64.S:257)\n[ 125.566487][ T1430] \u003c/TASK\u003e\n[ 125.566488][ T1430] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47696",
"url": "https://www.suse.com/security/cve/CVE-2024-47696"
},
{
"category": "external",
"summary": "SUSE Bug 1231864 for CVE-2024-47696",
"url": "https://bugzilla.suse.com/1231864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47696"
},
{
"cve": "CVE-2024-47697",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47697"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error\n\nEnsure index in rtl2830_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47697",
"url": "https://www.suse.com/security/cve/CVE-2024-47697"
},
{
"category": "external",
"summary": "SUSE Bug 1231858 for CVE-2024-47697",
"url": "https://bugzilla.suse.com/1231858"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47697"
},
{
"cve": "CVE-2024-47698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47698"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error\n\nEnsure index in rtl2832_pid_filter does not exceed 31 to prevent\nout-of-bounds access.\n\ndev-\u003efilters is a 32-bit value, so set_bit and clear_bit functions should\nonly operate on indices from 0 to 31. If index is 32, it will attempt to\naccess a non-existent 33rd bit, leading to out-of-bounds access.\nChange the boundary check from index \u003e 32 to index \u003e= 32 to resolve this\nissue.\n\n[hverkuil: added fixes tag, rtl2830_pid_filter -\u003e rtl2832_pid_filter in logmsg]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47698",
"url": "https://www.suse.com/security/cve/CVE-2024-47698"
},
{
"category": "external",
"summary": "SUSE Bug 1231859 for CVE-2024-47698",
"url": "https://bugzilla.suse.com/1231859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47698"
},
{
"cve": "CVE-2024-47699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47699"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential null-ptr-deref in nilfs_btree_insert()\n\nPatch series \"nilfs2: fix potential issues with empty b-tree nodes\".\n\nThis series addresses three potential issues with empty b-tree nodes that\ncan occur with corrupted filesystem images, including one recently\ndiscovered by syzbot.\n\n\nThis patch (of 3):\n\nIf a b-tree is broken on the device, and the b-tree height is greater than\n2 (the level of the root node is greater than 1) even if the number of\nchild nodes of the b-tree root is 0, a NULL pointer dereference occurs in\nnilfs_btree_prepare_insert(), which is called from nilfs_btree_insert().\n\nThis is because, when the number of child nodes of the b-tree root is 0,\nnilfs_btree_do_lookup() does not set the block buffer head in any of\npath[x].bp_bh, leaving it as the initial value of NULL, but if the level\nof the b-tree root node is greater than 1, nilfs_btree_get_nonroot_node(),\nwhich accesses the buffer memory of path[x].bp_bh, is called.\n\nFix this issue by adding a check to nilfs_btree_root_broken(), which\nperforms sanity checks when reading the root node from the device, to\ndetect this inconsistency.\n\nThanks to Lizhi Xu for trying to solve the bug and clarifying the cause\nearly on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47699",
"url": "https://www.suse.com/security/cve/CVE-2024-47699"
},
{
"category": "external",
"summary": "SUSE Bug 1231916 for CVE-2024-47699",
"url": "https://bugzilla.suse.com/1231916"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47699"
},
{
"cve": "CVE-2024-47701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47701"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid OOB when system.data xattr changes underneath the filesystem\n\nWhen looking up for an entry in an inlined directory, if e_value_offs is\nchanged underneath the filesystem by some change in the block device, it\nwill lead to an out-of-bounds access that KASAN detects as an UAF.\n\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.\nloop0: detected capacity change from 2048 to 2047\n==================================================================\nBUG: KASAN: use-after-free in ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\nRead of size 1 at addr ffff88803e91130f by task syz-executor269/5103\n\nCPU: 0 UID: 0 PID: 5103 Comm: syz-executor269 Not tainted 6.11.0-rc4-syzkaller #0\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ext4_search_dir+0xf2/0x1c0 fs/ext4/namei.c:1500\n ext4_find_inline_entry+0x4be/0x5e0 fs/ext4/inline.c:1697\n __ext4_find_entry+0x2b4/0x1b30 fs/ext4/namei.c:1573\n ext4_lookup_entry fs/ext4/namei.c:1727 [inline]\n ext4_lookup+0x15f/0x750 fs/ext4/namei.c:1795\n lookup_one_qstr_excl+0x11f/0x260 fs/namei.c:1633\n filename_create+0x297/0x540 fs/namei.c:3980\n do_symlinkat+0xf9/0x3a0 fs/namei.c:4587\n __do_sys_symlinkat fs/namei.c:4610 [inline]\n __se_sys_symlinkat fs/namei.c:4607 [inline]\n __x64_sys_symlinkat+0x95/0xb0 fs/namei.c:4607\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f3e73ced469\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fff4d40c258 EFLAGS: 00000246 ORIG_RAX: 000000000000010a\nRAX: ffffffffffffffda RBX: 0032656c69662f2e RCX: 00007f3e73ced469\nRDX: 0000000020000200 RSI: 00000000ffffff9c RDI: 00000000200001c0\nRBP: 0000000000000000 R08: 00007fff4d40c290 R09: 00007fff4d40c290\nR10: 0023706f6f6c2f76 R11: 0000000000000246 R12: 00007fff4d40c27c\nR13: 0000000000000003 R14: 431bde82d7b634db R15: 00007fff4d40c2b0\n \u003c/TASK\u003e\n\nCalling ext4_xattr_ibody_find right after reading the inode with\next4_get_inode_loc will lead to a check of the validity of the xattrs,\navoiding this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47701",
"url": "https://www.suse.com/security/cve/CVE-2024-47701"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1231920 for CVE-2024-47701",
"url": "https://bugzilla.suse.com/1231920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47701"
},
{
"cve": "CVE-2024-47709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry().\n\nsyzbot reported a warning in bcm_release(). [0]\n\nThe blamed change fixed another warning that is triggered when\nconnect() is issued again for a socket whose connect()ed device has\nbeen unregistered.\n\nHowever, if the socket is just close()d without the 2nd connect(), the\nremaining bo-\u003ebcm_proc_read triggers unnecessary remove_proc_entry()\nin bcm_release().\n\nLet\u0027s clear bo-\u003ebcm_proc_read after remove_proc_entry() in bcm_notify().\n\n[0]\nname \u00274986\u0027\nWARNING: CPU: 0 PID: 5234 at fs/proc/generic.c:711 remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nModules linked in:\nCPU: 0 UID: 0 PID: 5234 Comm: syz-executor606 Not tainted 6.11.0-rc5-syzkaller-00178-g5517ae241919 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nRIP: 0010:remove_proc_entry+0x2e7/0x5d0 fs/proc/generic.c:711\nCode: ff eb 05 e8 cb 1e 5e ff 48 8b 5c 24 10 48 c7 c7 e0 f7 aa 8e e8 2a 38 8e 09 90 48 c7 c7 60 3a 1b 8c 48 89 de e8 da 42 20 ff 90 \u003c0f\u003e 0b 90 90 48 8b 44 24 18 48 c7 44 24 40 0e 36 e0 45 49 c7 04 07\nRSP: 0018:ffffc9000345fa20 EFLAGS: 00010246\nRAX: 2a2d0aee2eb64600 RBX: ffff888032f1f548 RCX: ffff888029431e00\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffc9000345fb08 R08: ffffffff8155b2f2 R09: 1ffff1101710519a\nR10: dffffc0000000000 R11: ffffed101710519b R12: ffff888011d38640\nR13: 0000000000000004 R14: 0000000000000000 R15: dffffc0000000000\nFS: 0000000000000000(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fcfb52722f0 CR3: 000000000e734000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n bcm_release+0x250/0x880 net/can/bcm.c:1578\n __sock_release net/socket.c:659 [inline]\n sock_close+0xbc/0x240 net/socket.c:1421\n __fput+0x24a/0x8a0 fs/file_table.c:422\n task_work_run+0x24f/0x310 kernel/task_work.c:228\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0xa2f/0x27f0 kernel/exit.c:882\n do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n __do_sys_exit_group kernel/exit.c:1042 [inline]\n __se_sys_exit_group kernel/exit.c:1040 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fcfb51ee969\nCode: Unable to access opcode bytes at 0x7fcfb51ee93f.\nRSP: 002b:00007ffce0109ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fcfb51ee969\nRDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\nRBP: 00007fcfb526f3b0 R08: ffffffffffffffb8 R09: 0000555500000000\nR10: 0000555500000000 R11: 0000000000000246 R12: 00007fcfb526f3b0\nR13: 0000000000000000 R14: 00007fcfb5271ee0 R15: 00007fcfb51bf160\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47709",
"url": "https://www.suse.com/security/cve/CVE-2024-47709"
},
{
"category": "external",
"summary": "SUSE Bug 1232048 for CVE-2024-47709",
"url": "https://bugzilla.suse.com/1232048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47709"
},
{
"cve": "CVE-2024-47712",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47712"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param\n\nIn the `wilc_parse_join_bss_param` function, the TSF field of the `ies`\nstructure is accessed after the RCU read-side critical section is\nunlocked. According to RCU usage rules, this is illegal. Reusing this\npointer can lead to unpredictable behavior, including accessing memory\nthat has been updated or causing use-after-free issues.\n\nThis possible bug was identified using a static analysis tool developed\nby myself, specifically designed to detect RCU-related issues.\n\nTo address this, the TSF value is now stored in a local variable\n`ies_tsf` before the RCU lock is released. The `param-\u003etsf_lo` field is\nthen assigned using this local variable, ensuring that the TSF value is\nsafely accessed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47712",
"url": "https://www.suse.com/security/cve/CVE-2024-47712"
},
{
"category": "external",
"summary": "SUSE Bug 1232017 for CVE-2024-47712",
"url": "https://bugzilla.suse.com/1232017"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47712"
},
{
"cve": "CVE-2024-47713",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47713"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()\n\nSince \u0027__dev_queue_xmit()\u0027 should be called with interrupts enabled,\nthe following backtrace:\n\nieee80211_do_stop()\n ...\n spin_lock_irqsave(\u0026local-\u003equeue_stop_reason_lock, flags)\n ...\n ieee80211_free_txskb()\n ieee80211_report_used_skb()\n ieee80211_report_ack_skb()\n cfg80211_mgmt_tx_status_ext()\n nl80211_frame_tx_status()\n genlmsg_multicast_netns()\n genlmsg_multicast_netns_filtered()\n nlmsg_multicast_filtered()\n\t netlink_broadcast_filtered()\n\t do_one_broadcast()\n\t netlink_broadcast_deliver()\n\t __netlink_sendskb()\n\t netlink_deliver_tap()\n\t __netlink_deliver_tap_skb()\n\t dev_queue_xmit()\n\t __dev_queue_xmit() ; with IRQS disabled\n ...\n spin_unlock_irqrestore(\u0026local-\u003equeue_stop_reason_lock, flags)\n\nissues the warning (as reported by syzbot reproducer):\n\nWARNING: CPU: 2 PID: 5128 at kernel/softirq.c:362 __local_bh_enable_ip+0xc3/0x120\n\nFix this by implementing a two-phase skb reclamation in\n\u0027ieee80211_do_stop()\u0027, where actual work is performed\noutside of a section with interrupts disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47713",
"url": "https://www.suse.com/security/cve/CVE-2024-47713"
},
{
"category": "external",
"summary": "SUSE Bug 1232016 for CVE-2024-47713",
"url": "https://bugzilla.suse.com/1232016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47713"
},
{
"cve": "CVE-2024-47718",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47718"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: always wait for both firmware loading attempts\n\nIn \u0027rtw_wait_firmware_completion()\u0027, always wait for both (regular and\nwowlan) firmware loading attempts. Otherwise if \u0027rtw_usb_intf_init()\u0027\nhas failed in \u0027rtw_usb_probe()\u0027, \u0027rtw_usb_disconnect()\u0027 may issue\n\u0027ieee80211_free_hw()\u0027 when one of \u0027rtw_load_firmware_cb()\u0027 (usually\nthe wowlan one) is still in progress, causing UAF detected by KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47718",
"url": "https://www.suse.com/security/cve/CVE-2024-47718"
},
{
"category": "external",
"summary": "SUSE Bug 1232015 for CVE-2024-47718",
"url": "https://bugzilla.suse.com/1232015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47718"
},
{
"cve": "CVE-2024-47723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix out-of-bounds in dbNextAG() and diAlloc()\n\nIn dbNextAG() , there is no check for the case where bmp-\u003edb_numag is\ngreater or same than MAXAG due to a polluted image, which causes an\nout-of-bounds. Therefore, a bounds check should be added in dbMount().\n\nAnd in dbNextAG(), a check for the case where agpref is greater than\nbmp-\u003edb_numag should be added, so an out-of-bounds exception should be\nprevented.\n\nAdditionally, a check for the case where agno is greater or same than\nMAXAG should be added in diAlloc() to prevent out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47723",
"url": "https://www.suse.com/security/cve/CVE-2024-47723"
},
{
"category": "external",
"summary": "SUSE Bug 1232050 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232050"
},
{
"category": "external",
"summary": "SUSE Bug 1232051 for CVE-2024-47723",
"url": "https://bugzilla.suse.com/1232051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-47723"
},
{
"cve": "CVE-2024-47728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error\n\nFor all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT} as input\narguments, zero the value for the case of an error as otherwise it could leak\nmemory. For tracing, it is not needed given CAP_PERFMON can already read all\nkernel memory anyway hence bpf_get_func_arg() and bpf_get_func_ret() is skipped\nin here.\n\nAlso, the MTU helpers mtu_len pointer value is being written but also read.\nTechnically, the MEM_UNINIT should not be there in order to always force init.\nRemoving MEM_UNINIT needs more verifier rework though: MEM_UNINIT right now\nimplies two things actually: i) write into memory, ii) memory does not have\nto be initialized. If we lift MEM_UNINIT, it then becomes: i) read into memory,\nii) memory must be initialized. This means that for bpf_*_check_mtu() we\u0027re\nreadding the issue we\u0027re trying to fix, that is, it would then be able to\nwrite back into things like .rodata BPF maps. Follow-up work will rework the\nMEM_UNINIT semantics such that the intent can be better expressed. For now\njust clear the *mtu_len on error path which can be lifted later again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47728",
"url": "https://www.suse.com/security/cve/CVE-2024-47728"
},
{
"category": "external",
"summary": "SUSE Bug 1232076 for CVE-2024-47728",
"url": "https://bugzilla.suse.com/1232076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47728"
},
{
"cve": "CVE-2024-47735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled\n\nFix missuse of spin_lock_irq()/spin_unlock_irq() when\nspin_lock_irqsave()/spin_lock_irqrestore() was hold.\n\nThis was discovered through the lock debugging, and the corresponding\nlog is as follows:\n\nraw_local_irq_restore() called with IRQs enabled\nWARNING: CPU: 96 PID: 2074 at kernel/locking/irqflag-debug.c:10 warn_bogus_irq_restore+0x30/0x40\n...\nCall trace:\n warn_bogus_irq_restore+0x30/0x40\n _raw_spin_unlock_irqrestore+0x84/0xc8\n add_qp_to_list+0x11c/0x148 [hns_roce_hw_v2]\n hns_roce_create_qp_common.constprop.0+0x240/0x780 [hns_roce_hw_v2]\n hns_roce_create_qp+0x98/0x160 [hns_roce_hw_v2]\n create_qp+0x138/0x258\n ib_create_qp_kernel+0x50/0xe8\n create_mad_qp+0xa8/0x128\n ib_mad_port_open+0x218/0x448\n ib_mad_init_device+0x70/0x1f8\n add_client_context+0xfc/0x220\n enable_device_and_get+0xd0/0x140\n ib_register_device.part.0+0xf4/0x1c8\n ib_register_device+0x34/0x50\n hns_roce_register_device+0x174/0x3d0 [hns_roce_hw_v2]\n hns_roce_init+0xfc/0x2c0 [hns_roce_hw_v2]\n __hns_roce_hw_v2_init_instance+0x7c/0x1d0 [hns_roce_hw_v2]\n hns_roce_hw_v2_init_instance+0x9c/0x180 [hns_roce_hw_v2]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47735",
"url": "https://www.suse.com/security/cve/CVE-2024-47735"
},
{
"category": "external",
"summary": "SUSE Bug 1232111 for CVE-2024-47735",
"url": "https://bugzilla.suse.com/1232111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47735"
},
{
"cve": "CVE-2024-47737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: call cache_put if xdr_reserve_space returns NULL\n\nIf not enough buffer space available, but idmap_lookup has triggered\nlookup_fn which calls cache_get and returns successfully. Then we\nmissed to call cache_put here which pairs with cache_get.\n\nReviwed-by: Jeff Layton \u003cjlayton@kernel.org\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47737",
"url": "https://www.suse.com/security/cve/CVE-2024-47737"
},
{
"category": "external",
"summary": "SUSE Bug 1232056 for CVE-2024-47737",
"url": "https://bugzilla.suse.com/1232056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47737"
},
{
"cve": "CVE-2024-47742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware_loader: Block path traversal\n\nMost firmware names are hardcoded strings, or are constructed from fairly\nconstrained format strings where the dynamic parts are just some hex\nnumbers or such.\n\nHowever, there are a couple codepaths in the kernel where firmware file\nnames contain string components that are passed through from a device or\nsemi-privileged userspace; the ones I could find (not counting interfaces\nthat require root privileges) are:\n\n - lpfc_sli4_request_firmware_update() seems to construct the firmware\n filename from \"ModelName\", a string that was previously parsed out of\n some descriptor (\"Vital Product Data\") in lpfc_fill_vpd()\n - nfp_net_fw_find() seems to construct a firmware filename from a model\n name coming from nfp_hwinfo_lookup(pf-\u003ehwinfo, \"nffw.partno\"), which I\n think parses some descriptor that was read from the device.\n (But this case likely isn\u0027t exploitable because the format string looks\n like \"netronome/nic_%s\", and there shouldn\u0027t be any *folders* starting\n with \"netronome/nic_\". The previous case was different because there,\n the \"%s\" is *at the start* of the format string.)\n - module_flash_fw_schedule() is reachable from the\n ETHTOOL_MSG_MODULE_FW_FLASH_ACT netlink command, which is marked as\n GENL_UNS_ADMIN_PERM (meaning CAP_NET_ADMIN inside a user namespace is\n enough to pass the privilege check), and takes a userspace-provided\n firmware name.\n (But I think to reach this case, you need to have CAP_NET_ADMIN over a\n network namespace that a special kind of ethernet device is mapped into,\n so I think this is not a viable attack path in practice.)\n\nFix it by rejecting any firmware names containing \"..\" path components.\n\nFor what it\u0027s worth, I went looking and haven\u0027t found any USB device\ndrivers that use the firmware loader dangerously.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47742",
"url": "https://www.suse.com/security/cve/CVE-2024-47742"
},
{
"category": "external",
"summary": "SUSE Bug 1232126 for CVE-2024-47742",
"url": "https://bugzilla.suse.com/1232126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47742"
},
{
"cve": "CVE-2024-47745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47745",
"url": "https://www.suse.com/security/cve/CVE-2024-47745"
},
{
"category": "external",
"summary": "SUSE Bug 1232135 for CVE-2024-47745",
"url": "https://bugzilla.suse.com/1232135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47745"
},
{
"cve": "CVE-2024-47749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cxgb4: Added NULL check for lookup_atid\n\nThe lookup_atid() function can return NULL if the ATID is\ninvalid or does not exist in the identifier table, which\ncould lead to dereferencing a null pointer without a\ncheck in the `act_establish()` and `act_open_rpl()` functions.\nAdd a NULL check to prevent null pointer dereferencing.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47749",
"url": "https://www.suse.com/security/cve/CVE-2024-47749"
},
{
"category": "external",
"summary": "SUSE Bug 1232180 for CVE-2024-47749",
"url": "https://bugzilla.suse.com/1232180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47749"
},
{
"cve": "CVE-2024-47756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47756"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: keystone: Fix if-statement expression in ks_pcie_quirk()\n\nThis code accidentally uses \u0026\u0026 where || was intended. It potentially\nresults in a NULL dereference.\n\nThus, fix the if-statement expression to use the correct condition.\n\n[kwilczynski: commit log]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47756",
"url": "https://www.suse.com/security/cve/CVE-2024-47756"
},
{
"category": "external",
"summary": "SUSE Bug 1232185 for CVE-2024-47756",
"url": "https://bugzilla.suse.com/1232185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-47756"
},
{
"cve": "CVE-2024-47757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-47757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential oob read in nilfs_btree_check_delete()\n\nThe function nilfs_btree_check_delete(), which checks whether degeneration\nto direct mapping occurs before deleting a b-tree entry, causes memory\naccess outside the block buffer when retrieving the maximum key if the\nroot node has no entries.\n\nThis does not usually happen because b-tree mappings with 0 child nodes\nare never created by mkfs.nilfs2 or nilfs2 itself. However, it can happen\nif the b-tree root node read from a device is configured that way, so fix\nthis potential issue by adding a check for that case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-47757",
"url": "https://www.suse.com/security/cve/CVE-2024-47757"
},
{
"category": "external",
"summary": "SUSE Bug 1232187 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232187"
},
{
"category": "external",
"summary": "SUSE Bug 1232188 for CVE-2024-47757",
"url": "https://bugzilla.suse.com/1232188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-47757"
},
{
"cve": "CVE-2024-49850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos\n\nIn case of malformed relocation record of kind BPF_CORE_TYPE_ID_LOCAL\nreferencing a non-existing BTF type, function bpf_core_calc_relo_insn\nwould cause a null pointer deference.\n\nFix this by adding a proper check upper in call stack, as malformed\nrelocation records could be passed from user space.\n\nSimplest reproducer is a program:\n\n r0 = 0\n exit\n\nWith a single relocation record:\n\n .insn_off = 0, /* patch first instruction */\n .type_id = 100500, /* this type id does not exist */\n .access_str_off = 6, /* offset of string \"0\" */\n .kind = BPF_CORE_TYPE_ID_LOCAL,\n\nSee the link for original reproducer or next commit for a test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49850",
"url": "https://www.suse.com/security/cve/CVE-2024-49850"
},
{
"category": "external",
"summary": "SUSE Bug 1232189 for CVE-2024-49850",
"url": "https://bugzilla.suse.com/1232189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49850"
},
{
"cve": "CVE-2024-49851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Clean up TPM space after command failure\n\ntpm_dev_transmit prepares the TPM space before attempting command\ntransmission. However if the command fails no rollback of this\npreparation is done. This can result in transient handles being leaked\nif the device is subsequently closed with no further commands performed.\n\nFix this by flushing the space in the event of command transmission\nfailure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49851",
"url": "https://www.suse.com/security/cve/CVE-2024-49851"
},
{
"category": "external",
"summary": "SUSE Bug 1232134 for CVE-2024-49851",
"url": "https://bugzilla.suse.com/1232134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49851"
},
{
"cve": "CVE-2024-49852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()\n\nThe kref_put() function will call nport-\u003erelease if the refcount drops to\nzero. The nport-\u003erelease release function is _efc_nport_free() which frees\n\"nport\". But then we dereference \"nport\" on the next line which is a use\nafter free. Re-order these lines to avoid the use after free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49852",
"url": "https://www.suse.com/security/cve/CVE-2024-49852"
},
{
"category": "external",
"summary": "SUSE Bug 1232819 for CVE-2024-49852",
"url": "https://bugzilla.suse.com/1232819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49852"
},
{
"cve": "CVE-2024-49855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix race between timeout and normal completion\n\nIf request timetout is handled by nbd_requeue_cmd(), normal completion\nhas to be stopped for avoiding to complete this requeued request, other\nuse-after-free can be triggered.\n\nFix the race by clearing NBD_CMD_INFLIGHT in nbd_requeue_cmd(), meantime\nmake sure that cmd-\u003elock is grabbed for clearing the flag and the\nrequeue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49855",
"url": "https://www.suse.com/security/cve/CVE-2024-49855"
},
{
"category": "external",
"summary": "SUSE Bug 1232195 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232195"
},
{
"category": "external",
"summary": "SUSE Bug 1232900 for CVE-2024-49855",
"url": "https://bugzilla.suse.com/1232900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-49855"
},
{
"cve": "CVE-2024-49861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix helper writes to read-only maps\n\nLonial found an issue that despite user- and BPF-side frozen BPF map\n(like in case of .rodata), it was still possible to write into it from\na BPF program side through specific helpers having ARG_PTR_TO_{LONG,INT}\nas arguments.\n\nIn check_func_arg() when the argument is as mentioned, the meta-\u003eraw_mode\nis never set. Later, check_helper_mem_access(), under the case of\nPTR_TO_MAP_VALUE as register base type, it assumes BPF_READ for the\nsubsequent call to check_map_access_type() and given the BPF map is\nread-only it succeeds.\n\nThe helpers really need to be annotated as ARG_PTR_TO_{LONG,INT} | MEM_UNINIT\nwhen results are written into them as opposed to read out of them. The\nlatter indicates that it\u0027s okay to pass a pointer to uninitialized memory\nas the memory is written to anyway.\n\nHowever, ARG_PTR_TO_{LONG,INT} is a special case of ARG_PTR_TO_FIXED_SIZE_MEM\njust with additional alignment requirement. So it is better to just get\nrid of the ARG_PTR_TO_{LONG,INT} special cases altogether and reuse the\nfixed size memory types. For this, add MEM_ALIGNED to additionally ensure\nalignment given these helpers write directly into the args via *\u003cptr\u003e = val.\nThe .arg*_size has been initialized reflecting the actual sizeof(*\u003cptr\u003e).\n\nMEM_ALIGNED can only be used in combination with MEM_FIXED_SIZE annotated\nargument types, since in !MEM_FIXED_SIZE cases the verifier does not know\nthe buffer size a priori and therefore cannot blindly write *\u003cptr\u003e = val.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49861",
"url": "https://www.suse.com/security/cve/CVE-2024-49861"
},
{
"category": "external",
"summary": "SUSE Bug 1232254 for CVE-2024-49861",
"url": "https://bugzilla.suse.com/1232254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49861"
},
{
"cve": "CVE-2024-49863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost/scsi: null-ptr-dereference in vhost_scsi_get_req()\n\nSince commit 3f8ca2e115e5 (\"vhost/scsi: Extract common handling code\nfrom control queue handler\") a null pointer dereference bug can be\ntriggered when guest sends an SCSI AN request.\n\nIn vhost_scsi_ctl_handle_vq(), `vc.target` is assigned with\n`\u0026v_req.tmf.lun[1]` within a switch-case block and is then passed to\nvhost_scsi_get_req() which extracts `vc-\u003ereq` and `tpg`. However, for\na `VIRTIO_SCSI_T_AN_*` request, tpg is not required, so `vc.target` is\nset to NULL in this branch. Later, in vhost_scsi_get_req(),\n`vc-\u003etarget` is dereferenced without being checked, leading to a null\npointer dereference bug. This bug can be triggered from guest.\n\nWhen this bug occurs, the vhost_worker process is killed while holding\n`vq-\u003emutex` and the corresponding tpg will remain occupied\nindefinitely.\n\nBelow is the KASAN report:\nOops: general protection fault, probably for non-canonical address\n0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 PID: 840 Comm: poc Not tainted 6.10.0+ #1\nHardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS\n1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:vhost_scsi_get_req+0x165/0x3a0\nCode: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 2b 02 00 00\n48 b8 00 00 00 00 00 fc ff df 4d 8b 65 30 4c 89 e2 48 c1 ea 03 \u003c0f\u003e b6\n04 02 4c 89 e2 83 e2 07 38 d0 7f 08 84 c0 0f 85 be 01 00 00\nRSP: 0018:ffff888017affb50 EFLAGS: 00010246\nRAX: dffffc0000000000 RBX: ffff88801b000000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888017affcb8\nRBP: ffff888017affb80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff888017affc88 R14: ffff888017affd1c R15: ffff888017993000\nFS: 000055556e076500(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200027c0 CR3: 0000000010ed0004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n ? show_regs+0x86/0xa0\n ? die_addr+0x4b/0xd0\n ? exc_general_protection+0x163/0x260\n ? asm_exc_general_protection+0x27/0x30\n ? vhost_scsi_get_req+0x165/0x3a0\n vhost_scsi_ctl_handle_vq+0x2a4/0xca0\n ? __pfx_vhost_scsi_ctl_handle_vq+0x10/0x10\n ? __switch_to+0x721/0xeb0\n ? __schedule+0xda5/0x5710\n ? __kasan_check_write+0x14/0x30\n ? _raw_spin_lock+0x82/0xf0\n vhost_scsi_ctl_handle_kick+0x52/0x90\n vhost_run_work_list+0x134/0x1b0\n vhost_task_fn+0x121/0x350\n...\n \u003c/TASK\u003e\n---[ end trace 0000000000000000 ]---\n\nLet\u0027s add a check in vhost_scsi_get_req.\n\n[whitespace fixes]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49863",
"url": "https://www.suse.com/security/cve/CVE-2024-49863"
},
{
"category": "external",
"summary": "SUSE Bug 1232255 for CVE-2024-49863",
"url": "https://bugzilla.suse.com/1232255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49863"
},
{
"cve": "CVE-2024-49868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a NULL pointer dereference when failed to start a new trasacntion\n\n[BUG]\nSyzbot reported a NULL pointer dereference with the following crash:\n\n FAULT_INJECTION: forcing a failure.\n start_transaction+0x830/0x1670 fs/btrfs/transaction.c:676\n prepare_to_relocate+0x31f/0x4c0 fs/btrfs/relocation.c:3642\n relocate_block_group+0x169/0xd20 fs/btrfs/relocation.c:3678\n ...\n BTRFS info (device loop0): balance: ended with status: -12\n Oops: general protection fault, probably for non-canonical address 0xdffffc00000000cc: 0000 [#1] PREEMPT SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000660-0x0000000000000667]\n RIP: 0010:btrfs_update_reloc_root+0x362/0xa80 fs/btrfs/relocation.c:926\n Call Trace:\n \u003cTASK\u003e\n commit_fs_roots+0x2ee/0x720 fs/btrfs/transaction.c:1496\n btrfs_commit_transaction+0xfaf/0x3740 fs/btrfs/transaction.c:2430\n del_balance_item fs/btrfs/volumes.c:3678 [inline]\n reset_balance_state+0x25e/0x3c0 fs/btrfs/volumes.c:3742\n btrfs_balance+0xead/0x10c0 fs/btrfs/volumes.c:4574\n btrfs_ioctl_balance+0x493/0x7c0 fs/btrfs/ioctl.c:3673\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xf9/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[CAUSE]\nThe allocation failure happens at the start_transaction() inside\nprepare_to_relocate(), and during the error handling we call\nunset_reloc_control(), which makes fs_info-\u003ebalance_ctl to be NULL.\n\nThen we continue the error path cleanup in btrfs_balance() by calling\nreset_balance_state() which will call del_balance_item() to fully delete\nthe balance item in the root tree.\n\nHowever during the small window between set_reloc_contrl() and\nunset_reloc_control(), we can have a subvolume tree update and created a\nreloc_root for that subvolume.\n\nThen we go into the final btrfs_commit_transaction() of\ndel_balance_item(), and into btrfs_update_reloc_root() inside\ncommit_fs_roots().\n\nThat function checks if fs_info-\u003ereloc_ctl is in the merge_reloc_tree\nstage, but since fs_info-\u003ereloc_ctl is NULL, it results a NULL pointer\ndereference.\n\n[FIX]\nJust add extra check on fs_info-\u003ereloc_ctl inside\nbtrfs_update_reloc_root(), before checking\nfs_info-\u003ereloc_ctl-\u003emerge_reloc_tree.\n\nThat DEAD_RELOC_TREE handling is to prevent further modification to the\nreloc tree during merge stage, but since there is no reloc_ctl at all,\nwe do not need to bother that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49868",
"url": "https://www.suse.com/security/cve/CVE-2024-49868"
},
{
"category": "external",
"summary": "SUSE Bug 1232272 for CVE-2024-49868",
"url": "https://bugzilla.suse.com/1232272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49868"
},
{
"cve": "CVE-2024-49870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix dentry leak in cachefiles_open_file()\n\nA dentry leak may be caused when a lookup cookie and a cull are concurrent:\n\n P1 | P2\n-----------------------------------------------------------\ncachefiles_lookup_cookie\n cachefiles_look_up_object\n lookup_one_positive_unlocked\n // get dentry\n cachefiles_cull\n inode-\u003ei_flags |= S_KERNEL_FILE;\n cachefiles_open_file\n cachefiles_mark_inode_in_use\n __cachefiles_mark_inode_in_use\n can_use = false\n if (!(inode-\u003ei_flags \u0026 S_KERNEL_FILE))\n can_use = true\n\t return false\n return false\n // Returns an error but doesn\u0027t put dentry\n\nAfter that the following WARNING will be triggered when the backend folder\nis umounted:\n\n==================================================================\nBUG: Dentry 000000008ad87947{i=7a,n=Dx_1_1.img} still in use (1) [unmount of ext4 sda]\nWARNING: CPU: 4 PID: 359261 at fs/dcache.c:1767 umount_check+0x5d/0x70\nCPU: 4 PID: 359261 Comm: umount Not tainted 6.6.0-dirty #25\nRIP: 0010:umount_check+0x5d/0x70\nCall Trace:\n \u003cTASK\u003e\n d_walk+0xda/0x2b0\n do_one_tree+0x20/0x40\n shrink_dcache_for_umount+0x2c/0x90\n generic_shutdown_super+0x20/0x160\n kill_block_super+0x1a/0x40\n ext4_kill_sb+0x22/0x40\n deactivate_locked_super+0x35/0x80\n cleanup_mnt+0x104/0x160\n==================================================================\n\nWhether cachefiles_open_file() returns true or false, the reference count\nobtained by lookup_positive_unlocked() in cachefiles_look_up_object()\nshould be released.\n\nTherefore release that reference count in cachefiles_look_up_object() to\nfix the above issue and simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49870",
"url": "https://www.suse.com/security/cve/CVE-2024-49870"
},
{
"category": "external",
"summary": "SUSE Bug 1232279 for CVE-2024-49870",
"url": "https://bugzilla.suse.com/1232279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49870"
},
{
"cve": "CVE-2024-49871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49871"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: adp5589-keys - fix NULL pointer dereference\n\nWe register a devm action to call adp5589_clear_config() and then pass\nthe i2c client as argument so that we can call i2c_get_clientdata() in\norder to get our device object. However, i2c_set_clientdata() is only\nbeing set at the end of the probe function which means that we\u0027ll get a\nNULL pointer dereference in case the probe function fails early.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49871",
"url": "https://www.suse.com/security/cve/CVE-2024-49871"
},
{
"category": "external",
"summary": "SUSE Bug 1232287 for CVE-2024-49871",
"url": "https://bugzilla.suse.com/1232287"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49871"
},
{
"cve": "CVE-2024-49875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49875"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: map the EBADMSG to nfserr_io to avoid warning\n\nExt4 will throw -EBADMSG through ext4_readdir when a checksum error\noccurs, resulting in the following WARNING.\n\nFix it by mapping EBADMSG to nfserr_io.\n\nnfsd_buffered_readdir\n iterate_dir // -EBADMSG -74\n ext4_readdir // .iterate_shared\n ext4_dx_readdir\n ext4_htree_fill_tree\n htree_dirblock_to_tree\n ext4_read_dirblock\n __ext4_read_dirblock\n ext4_dirblock_csum_verify\n warn_no_space_for_csum\n __warn_no_space_for_csum\n return ERR_PTR(-EFSBADCRC) // -EBADMSG -74\n nfserrno // WARNING\n\n[ 161.115610] ------------[ cut here ]------------\n[ 161.116465] nfsd: non-standard errno: -74\n[ 161.117315] WARNING: CPU: 1 PID: 780 at fs/nfsd/nfsproc.c:878 nfserrno+0x9d/0xd0\n[ 161.118596] Modules linked in:\n[ 161.119243] CPU: 1 PID: 780 Comm: nfsd Not tainted 5.10.0-00014-g79679361fd5d #138\n[ 161.120684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qe\nmu.org 04/01/2014\n[ 161.123601] RIP: 0010:nfserrno+0x9d/0xd0\n[ 161.124676] Code: 0f 87 da 30 dd 00 83 e3 01 b8 00 00 00 05 75 d7 44 89 ee 48 c7 c7 c0 57 24 98 89 44 24 04 c6\n 05 ce 2b 61 03 01 e8 99 20 d8 00 \u003c0f\u003e 0b 8b 44 24 04 eb b5 4c 89 e6 48 c7 c7 a0 6d a4 99 e8 cc 15 33\n[ 161.127797] RSP: 0018:ffffc90000e2f9c0 EFLAGS: 00010286\n[ 161.128794] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000\n[ 161.130089] RDX: 1ffff1103ee16f6d RSI: 0000000000000008 RDI: fffff520001c5f2a\n[ 161.131379] RBP: 0000000000000022 R08: 0000000000000001 R09: ffff8881f70c1827\n[ 161.132664] R10: ffffed103ee18304 R11: 0000000000000001 R12: 0000000000000021\n[ 161.133949] R13: 00000000ffffffb6 R14: ffff8881317c0000 R15: ffffc90000e2fbd8\n[ 161.135244] FS: 0000000000000000(0000) GS:ffff8881f7080000(0000) knlGS:0000000000000000\n[ 161.136695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 161.137761] CR2: 00007fcaad70b348 CR3: 0000000144256006 CR4: 0000000000770ee0\n[ 161.139041] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 161.140291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 161.141519] PKRU: 55555554\n[ 161.142076] Call Trace:\n[ 161.142575] ? __warn+0x9b/0x140\n[ 161.143229] ? nfserrno+0x9d/0xd0\n[ 161.143872] ? report_bug+0x125/0x150\n[ 161.144595] ? handle_bug+0x41/0x90\n[ 161.145284] ? exc_invalid_op+0x14/0x70\n[ 161.146009] ? asm_exc_invalid_op+0x12/0x20\n[ 161.146816] ? nfserrno+0x9d/0xd0\n[ 161.147487] nfsd_buffered_readdir+0x28b/0x2b0\n[ 161.148333] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.149258] ? nfsd_buffered_filldir+0xf0/0xf0\n[ 161.150093] ? wait_for_concurrent_writes+0x170/0x170\n[ 161.151004] ? generic_file_llseek_size+0x48/0x160\n[ 161.151895] nfsd_readdir+0x132/0x190\n[ 161.152606] ? nfsd4_encode_dirent_fattr+0x380/0x380\n[ 161.153516] ? nfsd_unlink+0x380/0x380\n[ 161.154256] ? override_creds+0x45/0x60\n[ 161.155006] nfsd4_encode_readdir+0x21a/0x3d0\n[ 161.155850] ? nfsd4_encode_readlink+0x210/0x210\n[ 161.156731] ? write_bytes_to_xdr_buf+0x97/0xe0\n[ 161.157598] ? __write_bytes_to_xdr_buf+0xd0/0xd0\n[ 161.158494] ? lock_downgrade+0x90/0x90\n[ 161.159232] ? nfs4svc_decode_voidarg+0x10/0x10\n[ 161.160092] nfsd4_encode_operation+0x15a/0x440\n[ 161.160959] nfsd4_proc_compound+0x718/0xe90\n[ 161.161818] nfsd_dispatch+0x18e/0x2c0\n[ 161.162586] svc_process_common+0x786/0xc50\n[ 161.163403] ? nfsd_svc+0x380/0x380\n[ 161.164137] ? svc_printk+0x160/0x160\n[ 161.164846] ? svc_xprt_do_enqueue.part.0+0x365/0x380\n[ 161.165808] ? nfsd_svc+0x380/0x380\n[ 161.166523] ? rcu_is_watching+0x23/0x40\n[ 161.167309] svc_process+0x1a5/0x200\n[ 161.168019] nfsd+0x1f5/0x380\n[ 161.168663] ? nfsd_shutdown_threads+0x260/0x260\n[ 161.169554] kthread+0x1c4/0x210\n[ 161.170224] ? kthread_insert_work_sanity_check+0x80/0x80\n[ 161.171246] ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49875",
"url": "https://www.suse.com/security/cve/CVE-2024-49875"
},
{
"category": "external",
"summary": "SUSE Bug 1232333 for CVE-2024-49875",
"url": "https://bugzilla.suse.com/1232333"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49875"
},
{
"cve": "CVE-2024-49877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49877"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate\n\nWhen doing cleanup, if flags without OCFS2_BH_READAHEAD, it may trigger\nNULL pointer dereference in the following ocfs2_set_buffer_uptodate() if\nbh is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49877",
"url": "https://www.suse.com/security/cve/CVE-2024-49877"
},
{
"category": "external",
"summary": "SUSE Bug 1232339 for CVE-2024-49877",
"url": "https://bugzilla.suse.com/1232339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49877"
},
{
"cve": "CVE-2024-49879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49879"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: omapdrm: Add missing check for alloc_ordered_workqueue\n\nAs it may return NULL pointer and cause NULL pointer dereference. Add check\nfor the return value of alloc_ordered_workqueue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49879",
"url": "https://www.suse.com/security/cve/CVE-2024-49879"
},
{
"category": "external",
"summary": "SUSE Bug 1232349 for CVE-2024-49879",
"url": "https://bugzilla.suse.com/1232349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49879"
},
{
"cve": "CVE-2024-49884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49884"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix slab-use-after-free in ext4_split_extent_at()\n\nWe hit the following use-after-free:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_split_extent_at+0xba8/0xcc0\nRead of size 2 at addr ffff88810548ed08 by task kworker/u20:0/40\nCPU: 0 PID: 40 Comm: kworker/u20:0 Not tainted 6.9.0-dirty #724\nCall Trace:\n \u003cTASK\u003e\n kasan_report+0x93/0xc0\n ext4_split_extent_at+0xba8/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nAllocated by task 40:\n __kmalloc_noprof+0x1ac/0x480\n ext4_find_extent+0xf3b/0x1e70\n ext4_ext_map_blocks+0x188/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n\nFreed by task 40:\n kfree+0xf1/0x2b0\n ext4_find_extent+0xa71/0x1e70\n ext4_ext_insert_extent+0xa22/0x3260\n ext4_split_extent_at+0x3ef/0xcc0\n ext4_split_extent.isra.0+0x18f/0x500\n ext4_split_convert_extents+0x275/0x750\n ext4_ext_handle_unwritten_extents+0x73e/0x1580\n ext4_ext_map_blocks+0xe20/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n==================================================================\n\nThe flow of issue triggering is as follows:\n\next4_split_extent_at\n path = *ppath\n ext4_ext_insert_extent(ppath)\n ext4_ext_create_new_leaf(ppath)\n ext4_find_extent(orig_path)\n path = *orig_path\n read_extent_tree_block\n // return -ENOMEM or -EIO\n ext4_free_ext_path(path)\n kfree(path)\n *orig_path = NULL\n a. If err is -ENOMEM:\n ext4_ext_dirty(path + path-\u003ep_depth)\n // path use-after-free !!!\n b. If err is -EIO and we have EXT_DEBUG defined:\n ext4_ext_show_leaf(path)\n eh = path[depth].p_hdr\n // path also use-after-free !!!\n\nSo when trying to zeroout or fix the extent length, call ext4_find_extent()\nto update the path.\n\nIn addition we use *ppath directly as an ext4_ext_show_leaf() input to\navoid possible use-after-free when EXT_DEBUG is defined, and to avoid\nunnecessary path updates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49884",
"url": "https://www.suse.com/security/cve/CVE-2024-49884"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232198 for CVE-2024-49884",
"url": "https://bugzilla.suse.com/1232198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49884"
},
{
"cve": "CVE-2024-49891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49891"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths\n\nWhen the HBA is undergoing a reset or is handling an errata event, NULL ptr\ndereference crashes may occur in routines such as\nlpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or\nlpfc_abort_handler().\n\nAdd NULL ptr checks before dereferencing hdwq pointers that may have been\nfreed due to operations colliding with a reset or errata event handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49891",
"url": "https://www.suse.com/security/cve/CVE-2024-49891"
},
{
"category": "external",
"summary": "SUSE Bug 1232218 for CVE-2024-49891",
"url": "https://bugzilla.suse.com/1232218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49891"
},
{
"cve": "CVE-2024-49900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49900"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uninit-value access of new_ea in ea_buffer\n\nsyzbot reports that lzo1x_1_do_compress is using uninit-value:\n\n=====================================================\nBUG: KMSAN: uninit-value in lzo1x_1_do_compress+0x19f9/0x2510 lib/lzo/lzo1x_compress.c:178\n\n...\n\nUninit was stored to memory at:\n ea_put fs/jfs/xattr.c:639 [inline]\n\n...\n\nLocal variable ea_buf created at:\n __jfs_setxattr+0x5d/0x1ae0 fs/jfs/xattr.c:662\n __jfs_xattr_set+0xe6/0x1f0 fs/jfs/xattr.c:934\n\n=====================================================\n\nThe reason is ea_buf-\u003enew_ea is not initialized properly.\n\nFix this by using memset to empty its content at the beginning\nin ea_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49900",
"url": "https://www.suse.com/security/cve/CVE-2024-49900"
},
{
"category": "external",
"summary": "SUSE Bug 1232359 for CVE-2024-49900",
"url": "https://bugzilla.suse.com/1232359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49900"
},
{
"cve": "CVE-2024-49902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49902"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: check if leafidx greater than num leaves per dmap tree\n\nsyzbot report a out of bounds in dbSplit, it because dmt_leafidx greater\nthan num leaves per dmap tree, add a checking for dmt_leafidx in dbFindLeaf.\n\nShaggy:\nModified sanity check to apply to control pages as well as leaf pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49902",
"url": "https://www.suse.com/security/cve/CVE-2024-49902"
},
{
"category": "external",
"summary": "SUSE Bug 1232378 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232378"
},
{
"category": "external",
"summary": "SUSE Bug 1232379 for CVE-2024-49902",
"url": "https://bugzilla.suse.com/1232379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-49902"
},
{
"cve": "CVE-2024-49903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49903"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Fix uaf in dbFreeBits\n\n[syzbot reported]\n==================================================================\nBUG: KASAN: slab-use-after-free in __mutex_lock_common kernel/locking/mutex.c:587 [inline]\nBUG: KASAN: slab-use-after-free in __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\nRead of size 8 at addr ffff8880229254b0 by task syz-executor357/5216\n\nCPU: 0 UID: 0 PID: 5216 Comm: syz-executor357 Not tainted 6.11.0-rc3-syzkaller-00156-gd7a5aa4b3c00 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n __mutex_lock_common kernel/locking/mutex.c:587 [inline]\n __mutex_lock+0xfe/0xd70 kernel/locking/mutex.c:752\n dbFreeBits+0x7ea/0xd90 fs/jfs/jfs_dmap.c:2390\n dbFreeDmap fs/jfs/jfs_dmap.c:2089 [inline]\n dbFree+0x35b/0x680 fs/jfs/jfs_dmap.c:409\n dbDiscardAG+0x8a9/0xa20 fs/jfs/jfs_dmap.c:1650\n jfs_ioc_trim+0x433/0x670 fs/jfs/jfs_discard.c:100\n jfs_ioctl+0x2d0/0x3e0 fs/jfs/ioctl.c:131\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n\nFreed by task 5218:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kfree+0x149/0x360 mm/slub.c:4594\n dbUnmount+0x11d/0x190 fs/jfs/jfs_dmap.c:278\n jfs_mount_rw+0x4ac/0x6a0 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3d1/0x6b0 fs/jfs/super.c:454\n reconfigure_super+0x445/0x880 fs/super.c:1083\n vfs_cmd_reconfigure fs/fsopen.c:263 [inline]\n vfs_fsconfig_locked fs/fsopen.c:292 [inline]\n __do_sys_fsconfig fs/fsopen.c:473 [inline]\n __se_sys_fsconfig+0xb6e/0xf80 fs/fsopen.c:345\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n[Analysis]\nThere are two paths (dbUnmount and jfs_ioc_trim) that generate race\ncondition when accessing bmap, which leads to the occurrence of uaf.\n\nUse the lock s_umount to synchronize them, in order to avoid uaf caused\nby race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49903",
"url": "https://www.suse.com/security/cve/CVE-2024-49903"
},
{
"category": "external",
"summary": "SUSE Bug 1232362 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1232362"
},
{
"category": "external",
"summary": "SUSE Bug 1233020 for CVE-2024-49903",
"url": "https://bugzilla.suse.com/1233020"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-49903"
},
{
"cve": "CVE-2024-49905",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49905"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_plane_handle_cursor_update function. Previously, \u0027afb\u0027 was\nassumed to be null, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm_plane.c:1298 amdgpu_dm_plane_handle_cursor_update() error: we previously assumed \u0027afb\u0027 could be null (see line 1252)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49905",
"url": "https://www.suse.com/security/cve/CVE-2024-49905"
},
{
"category": "external",
"summary": "SUSE Bug 1232357 for CVE-2024-49905",
"url": "https://bugzilla.suse.com/1232357"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49905"
},
{
"cve": "CVE-2024-49907",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49907"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using dc-\u003eclk_mgr\n\n[WHY \u0026 HOW]\ndc-\u003eclk_mgr is null checked previously in the same function, indicating\nit might be null.\n\nPassing \"dc\" to \"dc-\u003ehwss.apply_idle_power_optimizations\", which\ndereferences null \"dc-\u003eclk_mgr\". (The function pointer resolves to\n\"dcn35_apply_idle_power_optimizations\".)\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49907",
"url": "https://www.suse.com/security/cve/CVE-2024-49907"
},
{
"category": "external",
"summary": "SUSE Bug 1232334 for CVE-2024-49907",
"url": "https://bugzilla.suse.com/1232334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49907"
},
{
"cve": "CVE-2024-49908",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49908"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49908",
"url": "https://www.suse.com/security/cve/CVE-2024-49908"
},
{
"category": "external",
"summary": "SUSE Bug 1232335 for CVE-2024-49908",
"url": "https://bugzilla.suse.com/1232335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49908"
},
{
"cve": "CVE-2024-49921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49921"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before used\n\n[WHAT \u0026 HOW]\nPoniters, such as dc-\u003eclk_mgr, are null checked previously in the same\nfunction, so Coverity warns \"implies that \"dc-\u003eclk_mgr\" might be null\".\nAs a result, these pointers need to be checked when used again.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49921",
"url": "https://www.suse.com/security/cve/CVE-2024-49921"
},
{
"category": "external",
"summary": "SUSE Bug 1232371 for CVE-2024-49921",
"url": "https://bugzilla.suse.com/1232371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49921"
},
{
"cve": "CVE-2024-49924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: pxafb: Fix possible use after free in pxafb_task()\n\nIn the pxafb_probe function, it calls the pxafb_init_fbinfo function,\nafter which \u0026fbi-\u003etask is associated with pxafb_task. Moreover,\nwithin this pxafb_init_fbinfo function, the pxafb_blank function\nwithin the \u0026pxafb_ops struct is capable of scheduling work.\n\nIf we remove the module which will call pxafb_remove to make cleanup,\nit will call unregister_framebuffer function which can call\ndo_unregister_framebuffer to free fbi-\u003efb through\nput_fb_info(fb_info), while the work mentioned above will be used.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | pxafb_task\npxafb_remove |\nunregister_framebuffer(info) |\ndo_unregister_framebuffer(fb_info) |\nput_fb_info(fb_info) |\n// free fbi-\u003efb | set_ctrlr_state(fbi, state)\n | __pxafb_lcd_power(fbi, 0)\n | fbi-\u003elcd_power(on, \u0026fbi-\u003efb.var)\n | //use fbi-\u003efb\n\nFix it by ensuring that the work is canceled before proceeding\nwith the cleanup in pxafb_remove.\n\nNote that only root user can remove the driver at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49924",
"url": "https://www.suse.com/security/cve/CVE-2024-49924"
},
{
"category": "external",
"summary": "SUSE Bug 1232364 for CVE-2024-49924",
"url": "https://bugzilla.suse.com/1232364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49924"
},
{
"cve": "CVE-2024-49925",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49925"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: efifb: Register sysfs groups through driver core\n\nThe driver core can register and cleanup sysfs groups already.\nMake use of that functionality to simplify the error handling and\ncleanup.\n\nAlso avoid a UAF race during unregistering where the sysctl attributes\nwere usable after the info struct was freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49925",
"url": "https://www.suse.com/security/cve/CVE-2024-49925"
},
{
"category": "external",
"summary": "SUSE Bug 1232224 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232224"
},
{
"category": "external",
"summary": "SUSE Bug 1232225 for CVE-2024-49925",
"url": "https://bugzilla.suse.com/1232225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49925"
},
{
"cve": "CVE-2024-49934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name\n\nIt\u0027s observed that a crash occurs during hot-remove a memory device,\nin which user is accessing the hugetlb. See calltrace as following:\n\n------------[ cut here ]------------\nWARNING: CPU: 1 PID: 14045 at arch/x86/mm/fault.c:1278 do_user_addr_fault+0x2a0/0x790\nModules linked in: kmem device_dax cxl_mem cxl_pmem cxl_port cxl_pci dax_hmem dax_pmem nd_pmem cxl_acpi nd_btt cxl_core crc32c_intel nvme virtiofs fuse nvme_core nfit libnvdimm dm_multipath scsi_dh_rdac scsi_dh_emc s\nmirror dm_region_hash dm_log dm_mod\nCPU: 1 PID: 14045 Comm: daxctl Not tainted 6.10.0-rc2-lizhijian+ #492\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:do_user_addr_fault+0x2a0/0x790\nCode: 48 8b 00 a8 04 0f 84 b5 fe ff ff e9 1c ff ff ff 4c 89 e9 4c 89 e2 be 01 00 00 00 bf 02 00 00 00 e8 b5 ef 24 00 e9 42 fe ff ff \u003c0f\u003e 0b 48 83 c4 08 4c 89 ea 48 89 ee 4c 89 e7 5b 5d 41 5c 41 5d 41\nRSP: 0000:ffffc90000a575f0 EFLAGS: 00010046\nRAX: ffff88800c303600 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000001000 RSI: ffffffff82504162 RDI: ffffffff824b2c36\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffc90000a57658\nR13: 0000000000001000 R14: ffff88800bc2e040 R15: 0000000000000000\nFS: 00007f51cb57d880(0000) GS:ffff88807fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000001000 CR3: 00000000072e2004 CR4: 00000000001706f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x8d/0x190\n ? do_user_addr_fault+0x2a0/0x790\n ? report_bug+0x1c3/0x1d0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? do_user_addr_fault+0x2a0/0x790\n ? exc_page_fault+0x31/0x200\n exc_page_fault+0x68/0x200\n\u003c...snip...\u003e\nBUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n ---[ end trace 0000000000000000 ]---\n BUG: unable to handle page fault for address: 0000000000001000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 800000000ad92067 P4D 800000000ad92067 PUD 7677067 PMD 0\n Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 14045 Comm: daxctl Kdump: loaded Tainted: G W 6.10.0-rc2-lizhijian+ #492\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n RIP: 0010:dentry_name+0x1f4/0x440\n\u003c...snip...\u003e\n? dentry_name+0x2fa/0x440\nvsnprintf+0x1f3/0x4f0\nvprintk_store+0x23a/0x540\nvprintk_emit+0x6d/0x330\n_printk+0x58/0x80\ndump_mapping+0x10b/0x1a0\n? __pfx_free_object_rcu+0x10/0x10\n__dump_page+0x26b/0x3e0\n? vprintk_emit+0xe0/0x330\n? _printk+0x58/0x80\n? dump_page+0x17/0x50\ndump_page+0x17/0x50\ndo_migrate_range+0x2f7/0x7f0\n? do_migrate_range+0x42/0x7f0\n? offline_pages+0x2f4/0x8c0\noffline_pages+0x60a/0x8c0\nmemory_subsys_offline+0x9f/0x1c0\n? lockdep_hardirqs_on+0x77/0x100\n? _raw_spin_unlock_irqrestore+0x38/0x60\ndevice_offline+0xe3/0x110\nstate_store+0x6e/0xc0\nkernfs_fop_write_iter+0x143/0x200\nvfs_write+0x39f/0x560\nksys_write+0x65/0xf0\ndo_syscall_64+0x62/0x130\n\nPreviously, some sanity check have been done in dump_mapping() before\nthe print facility parsing \u0027%pd\u0027 though, it\u0027s still possible to run into\nan invalid dentry.d_name.name.\n\nSince dump_mapping() only needs to dump the filename only, retrieve it\nby itself in a safer way to prevent an unnecessary crash.\n\nNote that either retrieving the filename with \u0027%pd\u0027 or\nstrncpy_from_kernel_nofault(), the filename could be unreliable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49934",
"url": "https://www.suse.com/security/cve/CVE-2024-49934"
},
{
"category": "external",
"summary": "SUSE Bug 1232387 for CVE-2024-49934",
"url": "https://bugzilla.suse.com/1232387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49934"
},
{
"cve": "CVE-2024-49935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PAD: fix crash in exit_round_robin()\n\nThe kernel occasionally crashes in cpumask_clear_cpu(), which is called\nwithin exit_round_robin(), because when executing clear_bit(nr, addr) with\nnr set to 0xffffffff, the address calculation may cause misalignment within\nthe memory, leading to access to an invalid memory address.\n\n----------\nBUG: unable to handle kernel paging request at ffffffffe0740618\n ...\nCPU: 3 PID: 2919323 Comm: acpi_pad/14 Kdump: loaded Tainted: G OE X --------- - - 4.18.0-425.19.2.el8_7.x86_64 #1\n ...\nRIP: 0010:power_saving_thread+0x313/0x411 [acpi_pad]\nCode: 89 cd 48 89 d3 eb d1 48 c7 c7 55 70 72 c0 e8 64 86 b0 e4 c6 05 0d a1 02 00 01 e9 bc fd ff ff 45 89 e4 42 8b 04 a5 20 82 72 c0 \u003cf0\u003e 48 0f b3 05 f4 9c 01 00 42 c7 04 a5 20 82 72 c0 ff ff ff ff 31\nRSP: 0018:ff72a5d51fa77ec8 EFLAGS: 00010202\nRAX: 00000000ffffffff RBX: ff462981e5d8cb80 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000246 RDI: 0000000000000246\nRBP: ff46297556959d80 R08: 0000000000000382 R09: ff46297c8d0f38d8\nR10: 0000000000000000 R11: 0000000000000001 R12: 000000000000000e\nR13: 0000000000000000 R14: ffffffffffffffff R15: 000000000000000e\nFS: 0000000000000000(0000) GS:ff46297a800c0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffffffffe0740618 CR3: 0000007e20410004 CR4: 0000000000771ee0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n ? acpi_pad_add+0x120/0x120 [acpi_pad]\n kthread+0x10b/0x130\n ? set_kthread_struct+0x50/0x50\n ret_from_fork+0x1f/0x40\n ...\nCR2: ffffffffe0740618\n\ncrash\u003e dis -lr ffffffffc0726923\n ...\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 114\n0xffffffffc0726918 \u003cpower_saving_thread+776\u003e:\tmov %r12d,%r12d\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./include/linux/cpumask.h: 325\n0xffffffffc072691b \u003cpower_saving_thread+779\u003e:\tmov -0x3f8d7de0(,%r12,4),%eax\n/usr/src/debug/kernel-4.18.0-425.19.2.el8_7/linux-4.18.0-425.19.2.el8_7.x86_64/./arch/x86/include/asm/bitops.h: 80\n0xffffffffc0726923 \u003cpower_saving_thread+787\u003e:\tlock btr %rax,0x19cf4(%rip) # 0xffffffffc0740620 \u003cpad_busy_cpus_bits\u003e\n\ncrash\u003e px tsk_in_cpu[14]\n$66 = 0xffffffff\n\ncrash\u003e px 0xffffffffc072692c+0x19cf4\n$99 = 0xffffffffc0740620\n\ncrash\u003e sym 0xffffffffc0740620\nffffffffc0740620 (b) pad_busy_cpus_bits [acpi_pad]\n\ncrash\u003e px pad_busy_cpus_bits[0]\n$42 = 0xfffc0\n----------\n\nTo fix this, ensure that tsk_in_cpu[tsk_index] != -1 before calling\ncpumask_clear_cpu() in exit_round_robin(), just as it is done in\nround_robin_cpu().\n\n[ rjw: Subject edit, avoid updates to the same value ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49935",
"url": "https://www.suse.com/security/cve/CVE-2024-49935"
},
{
"category": "external",
"summary": "SUSE Bug 1232370 for CVE-2024-49935",
"url": "https://bugzilla.suse.com/1232370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49935"
},
{
"cve": "CVE-2024-49938",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49938"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit\n\nSyzbot points out that skb_trim() has a sanity check on the existing length of\nthe skb, which can be uninitialised in some error paths. The intent here is\nclearly just to reset the length to zero before resubmitting, so switch to\ncalling __skb_set_length(skb, 0) directly. In addition, __skb_set_length()\nalready contains a call to skb_reset_tail_pointer(), so remove the redundant\ncall.\n\nThe syzbot report came from ath9k_hif_usb_reg_in_cb(), but there\u0027s a similar\nusage of skb_trim() in ath9k_hif_usb_rx_cb(), change both while we\u0027re at it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49938",
"url": "https://www.suse.com/security/cve/CVE-2024-49938"
},
{
"category": "external",
"summary": "SUSE Bug 1232552 for CVE-2024-49938",
"url": "https://bugzilla.suse.com/1232552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49938"
},
{
"cve": "CVE-2024-49945",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49945"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ncsi: Disable the ncsi work before freeing the associated structure\n\nThe work function can run after the ncsi device is freed, resulting\nin use-after-free bugs or kernel panic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49945",
"url": "https://www.suse.com/security/cve/CVE-2024-49945"
},
{
"category": "external",
"summary": "SUSE Bug 1232165 for CVE-2024-49945",
"url": "https://bugzilla.suse.com/1232165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49945"
},
{
"cve": "CVE-2024-49947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: test for not too small csum_start in virtio_net_hdr_to_skb()\n\nsyzbot was able to trigger this warning [1], after injecting a\nmalicious packet through af_packet, setting skb-\u003ecsum_start and thus\nthe transport header to an incorrect value.\n\nWe can at least make sure the transport header is after\nthe end of the network header (with a estimated minimal size).\n\n[1]\n[ 67.873027] skb len=4096 headroom=16 headlen=14 tailroom=0\nmac=(-1,-1) mac_len=0 net=(16,-6) trans=10\nshinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))\ncsum(0xa start=10 offset=0 ip_summed=3 complete_sw=0 valid=0 level=0)\nhash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0\npriority=0x0 mark=0x0 alloc_cpu=10 vlan_all=0x0\nencapsulation=0 inner(proto=0x0000, mac=0, net=0, trans=0)\n[ 67.877172] dev name=veth0_vlan feat=0x000061164fdd09e9\n[ 67.877764] sk family=17 type=3 proto=0\n[ 67.878279] skb linear: 00000000: 00 00 10 00 00 00 00 00 0f 00 00 00 08 00\n[ 67.879128] skb frag: 00000000: 0e 00 07 00 00 00 28 00 08 80 1c 00 04 00 00 02\n[ 67.879877] skb frag: 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.880647] skb frag: 00000020: 00 00 02 00 00 00 08 00 1b 00 00 00 00 00 00 00\n[ 67.881156] skb frag: 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.881753] skb frag: 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882173] skb frag: 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.882790] skb frag: 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883171] skb frag: 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.883733] skb frag: 00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.884206] skb frag: 00000090: 00 00 00 00 00 00 00 00 00 00 69 70 76 6c 61 6e\n[ 67.884704] skb frag: 000000a0: 31 00 00 00 00 00 00 00 00 00 2b 00 00 00 00 00\n[ 67.885139] skb frag: 000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.885677] skb frag: 000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886042] skb frag: 000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.886408] skb frag: 000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887020] skb frag: 000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n[ 67.887384] skb frag: 00000100: 00 00\n[ 67.887878] ------------[ cut here ]------------\n[ 67.887908] offset (-6) \u003e= skb_headlen() (14)\n[ 67.888445] WARNING: CPU: 10 PID: 2088 at net/core/dev.c:3332 skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.889353] Modules linked in: macsec macvtap macvlan hsr wireguard curve25519_x86_64 libcurve25519_generic libchacha20poly1305 chacha_x86_64 libchacha poly1305_x86_64 dummy bridge sr_mod cdrom evdev pcspkr i2c_piix4 9pnet_virtio 9p 9pnet netfs\n[ 67.890111] CPU: 10 UID: 0 PID: 2088 Comm: b363492833 Not tainted 6.11.0-virtme #1011\n[ 67.890183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 67.890309] RIP: 0010:skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891043] Call Trace:\n[ 67.891173] \u003cTASK\u003e\n[ 67.891274] ? __warn (kernel/panic.c:741)\n[ 67.891320] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891333] ? report_bug (lib/bug.c:180 lib/bug.c:219)\n[ 67.891348] ? handle_bug (arch/x86/kernel/traps.c:239)\n[ 67.891363] ? exc_invalid_op (arch/x86/kernel/traps.c:260 (discriminator 1))\n[ 67.891372] ? asm_exc_invalid_op (./arch/x86/include/asm/idtentry.h:621)\n[ 67.891388] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891399] ? skb_checksum_help (net/core/dev.c:3332 (discriminator 2))\n[ 67.891416] ip_do_fragment (net/ipv4/ip_output.c:777 (discriminator 1))\n[ 67.891448] ? __ip_local_out (./include/linux/skbuff.h:1146 ./include/net/l3mdev.h:196 ./include/net/l3mdev.h:213 ne\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49947",
"url": "https://www.suse.com/security/cve/CVE-2024-49947"
},
{
"category": "external",
"summary": "SUSE Bug 1232162 for CVE-2024-49947",
"url": "https://bugzilla.suse.com/1232162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49947"
},
{
"cve": "CVE-2024-49950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix uaf in l2cap_connect\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\nRead of size 8 at addr ffff8880241e9800 by task kworker/u9:0/54\n\nCPU: 0 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.11.0-rc6-syzkaller-00268-g788220eee30d #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nWorkqueue: hci2 hci_rx_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc3/0x620 mm/kasan/report.c:488\n kasan_report+0xd9/0x110 mm/kasan/report.c:601\n l2cap_connect.constprop.0+0x10d8/0x1270 net/bluetooth/l2cap_core.c:3949\n l2cap_connect_req net/bluetooth/l2cap_core.c:4080 [inline]\n l2cap_bredr_sig_cmd net/bluetooth/l2cap_core.c:4772 [inline]\n l2cap_sig_channel net/bluetooth/l2cap_core.c:5543 [inline]\n l2cap_recv_frame+0xf0b/0x8eb0 net/bluetooth/l2cap_core.c:6825\n l2cap_recv_acldata+0x9b4/0xb70 net/bluetooth/l2cap_core.c:7514\n hci_acldata_packet net/bluetooth/hci_core.c:3791 [inline]\n hci_rx_work+0xaab/0x1610 net/bluetooth/hci_core.c:4028\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n...\n\nFreed by task 5245:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:47\n kasan_save_track+0x14/0x30 mm/kasan/common.c:68\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:579\n poison_slab_object+0xf7/0x160 mm/kasan/common.c:240\n __kasan_slab_free+0x32/0x50 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2256 [inline]\n slab_free mm/slub.c:4477 [inline]\n kfree+0x12a/0x3b0 mm/slub.c:4598\n l2cap_conn_free net/bluetooth/l2cap_core.c:1810 [inline]\n kref_put include/linux/kref.h:65 [inline]\n l2cap_conn_put net/bluetooth/l2cap_core.c:1822 [inline]\n l2cap_conn_del+0x59d/0x730 net/bluetooth/l2cap_core.c:1802\n l2cap_connect_cfm+0x9e6/0xf80 net/bluetooth/l2cap_core.c:7241\n hci_connect_cfm include/net/bluetooth/hci_core.h:1960 [inline]\n hci_conn_failed+0x1c3/0x370 net/bluetooth/hci_conn.c:1265\n hci_abort_conn_sync+0x75a/0xb50 net/bluetooth/hci_sync.c:5583\n abort_conn_sync+0x197/0x360 net/bluetooth/hci_conn.c:2917\n hci_cmd_sync_work+0x1a4/0x410 net/bluetooth/hci_sync.c:328\n process_one_work+0x9c5/0x1b40 kernel/workqueue.c:3231\n process_scheduled_works kernel/workqueue.c:3312 [inline]\n worker_thread+0x6c8/0xed0 kernel/workqueue.c:3389\n kthread+0x2c1/0x3a0 kernel/kthread.c:389\n ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49950",
"url": "https://www.suse.com/security/cve/CVE-2024-49950"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232159 for CVE-2024-49950",
"url": "https://bugzilla.suse.com/1232159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49950"
},
{
"cve": "CVE-2024-49957",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49957"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix null-ptr-deref when journal load failed.\n\nDuring the mounting process, if journal_reset() fails because of too short\njournal, then lead to jbd2_journal_load() fails with NULL j_sb_buffer. \nSubsequently, ocfs2_journal_shutdown() calls\njbd2_journal_flush()-\u003ejbd2_cleanup_journal_tail()-\u003e\n__jbd2_update_log_tail()-\u003ejbd2_journal_update_sb_log_tail()\n-\u003elock_buffer(journal-\u003ej_sb_buffer), resulting in a null-pointer\ndereference error.\n\nTo resolve this issue, we should check the JBD2_LOADED flag to ensure the\njournal was properly loaded. Additionally, use journal instead of\nosb-\u003ejournal directly to simplify the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49957",
"url": "https://www.suse.com/security/cve/CVE-2024-49957"
},
{
"category": "external",
"summary": "SUSE Bug 1232152 for CVE-2024-49957",
"url": "https://bugzilla.suse.com/1232152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49957"
},
{
"cve": "CVE-2024-49963",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49963"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmailbox: bcm2835: Fix timeout during suspend mode\n\nDuring noirq suspend phase the Raspberry Pi power driver suffer of\nfirmware property timeouts. The reason is that the IRQ of the underlying\nBCM2835 mailbox is disabled and rpi_firmware_property_list() will always\nrun into a timeout [1].\n\nSince the VideoCore side isn\u0027t consider as a wakeup source, set the\nIRQF_NO_SUSPEND flag for the mailbox IRQ in order to keep it enabled\nduring suspend-resume cycle.\n\n[1]\nPM: late suspend of devices complete after 1.754 msecs\nWARNING: CPU: 0 PID: 438 at drivers/firmware/raspberrypi.c:128\n rpi_firmware_property_list+0x204/0x22c\nFirmware transaction 0x00028001 timeout\nModules linked in:\nCPU: 0 PID: 438 Comm: bash Tainted: G C 6.9.3-dirty #17\nHardware name: BCM2835\nCall trace:\nunwind_backtrace from show_stack+0x18/0x1c\nshow_stack from dump_stack_lvl+0x34/0x44\ndump_stack_lvl from __warn+0x88/0xec\n__warn from warn_slowpath_fmt+0x7c/0xb0\nwarn_slowpath_fmt from rpi_firmware_property_list+0x204/0x22c\nrpi_firmware_property_list from rpi_firmware_property+0x68/0x8c\nrpi_firmware_property from rpi_firmware_set_power+0x54/0xc0\nrpi_firmware_set_power from _genpd_power_off+0xe4/0x148\n_genpd_power_off from genpd_sync_power_off+0x7c/0x11c\ngenpd_sync_power_off from genpd_finish_suspend+0xcc/0xe0\ngenpd_finish_suspend from dpm_run_callback+0x78/0xd0\ndpm_run_callback from device_suspend_noirq+0xc0/0x238\ndevice_suspend_noirq from dpm_suspend_noirq+0xb0/0x168\ndpm_suspend_noirq from suspend_devices_and_enter+0x1b8/0x5ac\nsuspend_devices_and_enter from pm_suspend+0x254/0x2e4\npm_suspend from state_store+0xa8/0xd4\nstate_store from kernfs_fop_write_iter+0x154/0x1a0\nkernfs_fop_write_iter from vfs_write+0x12c/0x184\nvfs_write from ksys_write+0x78/0xc0\nksys_write from ret_fast_syscall+0x0/0x54\nException stack(0xcc93dfa8 to 0xcc93dff0)\n[...]\nPM: noirq suspend of devices complete after 3095.584 msecs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49963",
"url": "https://www.suse.com/security/cve/CVE-2024-49963"
},
{
"category": "external",
"summary": "SUSE Bug 1232147 for CVE-2024-49963",
"url": "https://bugzilla.suse.com/1232147"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49963"
},
{
"cve": "CVE-2024-49965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove unreasonable unlock in ocfs2_read_blocks\n\nPatch series \"Misc fixes for ocfs2_read_blocks\", v5.\n\nThis series contains 2 fixes for ocfs2_read_blocks(). The first patch fix\nthe issue reported by syzbot, which detects bad unlock balance in\nocfs2_read_blocks(). The second patch fixes an issue reported by Heming\nZhao when reviewing above fix.\n\n\nThis patch (of 2):\n\nThere was a lock release before exiting, so remove the unreasonable unlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49965",
"url": "https://www.suse.com/security/cve/CVE-2024-49965"
},
{
"category": "external",
"summary": "SUSE Bug 1232142 for CVE-2024-49965",
"url": "https://bugzilla.suse.com/1232142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49965"
},
{
"cve": "CVE-2024-49966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49966"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: cancel dqi_sync_work before freeing oinfo\n\nocfs2_global_read_info() will initialize and schedule dqi_sync_work at the\nend, if error occurs after successfully reading global quota, it will\ntrigger the following warning with CONFIG_DEBUG_OBJECTS_* enabled:\n\nODEBUG: free active (active state 0) object: 00000000d8b0ce28 object type: timer_list hint: qsync_work_fn+0x0/0x16c\n\nThis reports that there is an active delayed work when freeing oinfo in\nerror handling, so cancel dqi_sync_work first. BTW, return status instead\nof -1 when .read_file_info fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49966",
"url": "https://www.suse.com/security/cve/CVE-2024-49966"
},
{
"category": "external",
"summary": "SUSE Bug 1232141 for CVE-2024-49966",
"url": "https://bugzilla.suse.com/1232141"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49966"
},
{
"cve": "CVE-2024-49968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49968"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: filesystems without casefold feature cannot be mounted with siphash\n\nWhen mounting the ext4 filesystem, if the default hash version is set to\nDX_HASH_SIPHASH but the casefold feature is not set, exit the mounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49968",
"url": "https://www.suse.com/security/cve/CVE-2024-49968"
},
{
"category": "external",
"summary": "SUSE Bug 1232264 for CVE-2024-49968",
"url": "https://bugzilla.suse.com/1232264"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49968"
},
{
"cve": "CVE-2024-49981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: fix use after free bug in venus_remove due to race condition\n\nin venus_probe, core-\u003ework is bound with venus_sys_error_handler, which is\nused to handle error. The code use core-\u003esys_err_done to make sync work.\nThe core-\u003ework is started in venus_event_notify.\n\nIf we call venus_remove, there might be an unfished work. The possible\nsequence is as follows:\n\nCPU0 CPU1\n\n |venus_sys_error_handler\nvenus_remove |\nhfi_destroy\t \t\t |\nvenus_hfi_destroy\t |\nkfree(hdev);\t |\n |hfi_reinit\n\t\t\t\t\t |venus_hfi_queues_reinit\n |//use hdev\n\nFix it by canceling the work in venus_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49981",
"url": "https://www.suse.com/security/cve/CVE-2024-49981"
},
{
"category": "external",
"summary": "SUSE Bug 1232098 for CVE-2024-49981",
"url": "https://bugzilla.suse.com/1232098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49981"
},
{
"cve": "CVE-2024-49983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free\n\nWhen calling ext4_force_split_extent_at() in ext4_ext_replay_update_ex(),\nthe \u0027ppath\u0027 is updated but it is the \u0027path\u0027 that is freed, thus potentially\ntriggering a double-free in the following process:\n\next4_ext_replay_update_ex\n ppath = path\n ext4_force_split_extent_at(\u0026ppath)\n ext4_split_extent_at\n ext4_ext_insert_extent\n ext4_ext_create_new_leaf\n ext4_ext_grow_indepth\n ext4_find_extent\n if (depth \u003e path[0].p_maxdepth)\n kfree(path) ---\u003e path First freed\n *orig_path = path = NULL ---\u003e null ppath\n kfree(path) ---\u003e path double-free !!!\n\nSo drop the unnecessary ppath and use path directly to avoid this problem.\nAnd use ext4_find_extent() directly to update path, avoiding unnecessary\nmemory allocation and freeing. Also, propagate the error returned by\next4_find_extent() instead of using strange error codes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49983",
"url": "https://www.suse.com/security/cve/CVE-2024-49983"
},
{
"category": "external",
"summary": "SUSE Bug 1232096 for CVE-2024-49983",
"url": "https://bugzilla.suse.com/1232096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49983"
},
{
"cve": "CVE-2024-49985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume\n\nIn case there is any sort of clock controller attached to this I2C bus\ncontroller, for example Versaclock or even an AIC32x4 I2C codec, then\nan I2C transfer triggered from the clock controller clk_ops .prepare\ncallback may trigger a deadlock on drivers/clk/clk.c prepare_lock mutex.\n\nThis is because the clock controller first grabs the prepare_lock mutex\nand then performs the prepare operation, including its I2C access. The\nI2C access resumes this I2C bus controller via .runtime_resume callback,\nwhich calls clk_prepare_enable(), which attempts to grab the prepare_lock\nmutex again and deadlocks.\n\nSince the clock are already prepared since probe() and unprepared in\nremove(), use simple clk_enable()/clk_disable() calls to enable and\ndisable the clock on runtime suspend and resume, to avoid hitting the\nprepare_lock mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49985",
"url": "https://www.suse.com/security/cve/CVE-2024-49985"
},
{
"category": "external",
"summary": "SUSE Bug 1232094 for CVE-2024-49985",
"url": "https://bugzilla.suse.com/1232094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49985"
},
{
"cve": "CVE-2024-49989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-49989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix double free issue during amdgpu module unload\n\nFlexible endpoints use DIGs from available inflexible endpoints,\nso only the encoders of inflexible links need to be freed.\nOtherwise, a double free issue may occur when unloading the\namdgpu module.\n\n[ 279.190523] RIP: 0010:__slab_free+0x152/0x2f0\n[ 279.190577] Call Trace:\n[ 279.190580] \u003cTASK\u003e\n[ 279.190582] ? show_regs+0x69/0x80\n[ 279.190590] ? die+0x3b/0x90\n[ 279.190595] ? do_trap+0xc8/0xe0\n[ 279.190601] ? do_error_trap+0x73/0xa0\n[ 279.190605] ? __slab_free+0x152/0x2f0\n[ 279.190609] ? exc_invalid_op+0x56/0x70\n[ 279.190616] ? __slab_free+0x152/0x2f0\n[ 279.190642] ? asm_exc_invalid_op+0x1f/0x30\n[ 279.190648] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191096] ? __slab_free+0x152/0x2f0\n[ 279.191102] ? dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191469] kfree+0x260/0x2b0\n[ 279.191474] dcn10_link_encoder_destroy+0x19/0x30 [amdgpu]\n[ 279.191821] link_destroy+0xd7/0x130 [amdgpu]\n[ 279.192248] dc_destruct+0x90/0x270 [amdgpu]\n[ 279.192666] dc_destroy+0x19/0x40 [amdgpu]\n[ 279.193020] amdgpu_dm_fini+0x16e/0x200 [amdgpu]\n[ 279.193432] dm_hw_fini+0x26/0x40 [amdgpu]\n[ 279.193795] amdgpu_device_fini_hw+0x24c/0x400 [amdgpu]\n[ 279.194108] amdgpu_driver_unload_kms+0x4f/0x70 [amdgpu]\n[ 279.194436] amdgpu_pci_remove+0x40/0x80 [amdgpu]\n[ 279.194632] pci_device_remove+0x3a/0xa0\n[ 279.194638] device_remove+0x40/0x70\n[ 279.194642] device_release_driver_internal+0x1ad/0x210\n[ 279.194647] driver_detach+0x4e/0xa0\n[ 279.194650] bus_remove_driver+0x6f/0xf0\n[ 279.194653] driver_unregister+0x33/0x60\n[ 279.194657] pci_unregister_driver+0x44/0x90\n[ 279.194662] amdgpu_exit+0x19/0x1f0 [amdgpu]\n[ 279.194939] __do_sys_delete_module.isra.0+0x198/0x2f0\n[ 279.194946] __x64_sys_delete_module+0x16/0x20\n[ 279.194950] do_syscall_64+0x58/0x120\n[ 279.194954] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n[ 279.194980] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-49989",
"url": "https://www.suse.com/security/cve/CVE-2024-49989"
},
{
"category": "external",
"summary": "SUSE Bug 1232483 for CVE-2024-49989",
"url": "https://bugzilla.suse.com/1232483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-49989"
},
{
"cve": "CVE-2024-50003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix system hang while resume with TBT monitor\n\n[Why]\nConnected with a Thunderbolt monitor and do the suspend and the system\nmay hang while resume.\n\nThe TBT monitor HPD will be triggered during the resume procedure\nand call the drm_client_modeset_probe() while\nstruct drm_connector connector-\u003edev-\u003emaster is NULL.\n\nIt will mess up the pipe topology after resume.\n\n[How]\nSkip the TBT monitor HPD during the resume procedure because we\ncurrently will probe the connectors after resume by default.\n\n(cherry picked from commit 453f86a26945207a16b8f66aaed5962dc2b95b85)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50003",
"url": "https://www.suse.com/security/cve/CVE-2024-50003"
},
{
"category": "external",
"summary": "SUSE Bug 1232385 for CVE-2024-50003",
"url": "https://bugzilla.suse.com/1232385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50003"
},
{
"cve": "CVE-2024-50007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: asihpi: Fix potential OOB array access\n\nASIHPI driver stores some values in the static array upon a response\nfrom the driver, and its index depends on the firmware. We shouldn\u0027t\ntrust it blindly.\n\nThis patch adds a sanity check of the array index to fit in the array\nsize.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50007",
"url": "https://www.suse.com/security/cve/CVE-2024-50007"
},
{
"category": "external",
"summary": "SUSE Bug 1232394 for CVE-2024-50007",
"url": "https://bugzilla.suse.com/1232394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50007"
},
{
"cve": "CVE-2024-50008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()\n\nReplace one-element array with a flexible-array member in\n`struct host_cmd_ds_802_11_scan_ext`.\n\nWith this, fix the following warning:\n\nelo 16 17:51:58 surfacebook kernel: ------------[ cut here ]------------\nelo 16 17:51:58 surfacebook kernel: memcpy: detected field-spanning write (size 243) of single field \"ext_scan-\u003etlv_buffer\" at drivers/net/wireless/marvell/mwifiex/scan.c:2239 (size 1)\nelo 16 17:51:58 surfacebook kernel: WARNING: CPU: 0 PID: 498 at drivers/net/wireless/marvell/mwifiex/scan.c:2239 mwifiex_cmd_802_11_scan_ext+0x83/0x90 [mwifiex]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50008",
"url": "https://www.suse.com/security/cve/CVE-2024-50008"
},
{
"category": "external",
"summary": "SUSE Bug 1232317 for CVE-2024-50008",
"url": "https://bugzilla.suse.com/1232317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50008"
},
{
"cve": "CVE-2024-50009",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50009"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpufreq: amd-pstate: add check for cpufreq_cpu_get\u0027s return value\n\ncpufreq_cpu_get may return NULL. To avoid NULL-dereference check it\nand return in case of error.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50009",
"url": "https://www.suse.com/security/cve/CVE-2024-50009"
},
{
"category": "external",
"summary": "SUSE Bug 1232318 for CVE-2024-50009",
"url": "https://bugzilla.suse.com/1232318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50009"
},
{
"cve": "CVE-2024-50013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix memory leak in exfat_load_bitmap()\n\nIf the first directory entry in the root directory is not a bitmap\ndirectory entry, \u0027bh\u0027 will not be released and reassigned, which\nwill cause a memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50013",
"url": "https://www.suse.com/security/cve/CVE-2024-50013"
},
{
"category": "external",
"summary": "SUSE Bug 1232080 for CVE-2024-50013",
"url": "https://bugzilla.suse.com/1232080"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50013"
},
{
"cve": "CVE-2024-50017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm/ident_map: Use gbpages only where full GB page should be mapped.\n\nWhen ident_pud_init() uses only GB pages to create identity maps, large\nranges of addresses not actually requested can be included in the resulting\ntable; a 4K request will map a full GB. This can include a lot of extra\naddress space past that requested, including areas marked reserved by the\nBIOS. That allows processor speculation into reserved regions, that on UV\nsystems can cause system halts.\n\nOnly use GB pages when map creation requests include the full GB page of\nspace. Fall back to using smaller 2M pages when only portions of a GB page\nare included in the request.\n\nNo attempt is made to coalesce mapping requests. If a request requires a\nmap entry at the 2M (pmd) level, subsequent mapping requests within the\nsame 1G region will also be at the pmd level, even if adjacent or\noverlapping such requests could have been combined to map a full GB page.\nExisting usage starts with larger regions and then adds smaller regions, so\nthis should not have any great consequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50017",
"url": "https://www.suse.com/security/cve/CVE-2024-50017"
},
{
"category": "external",
"summary": "SUSE Bug 1232312 for CVE-2024-50017",
"url": "https://bugzilla.suse.com/1232312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50017"
},
{
"cve": "CVE-2024-50025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: fnic: Move flush_work initialization out of if block\n\nAfter commit 379a58caa199 (\"scsi: fnic: Move fnic_fnic_flush_tx() to a\nwork queue\"), it can happen that a work item is sent to an uninitialized\nwork queue. This may has the effect that the item being queued is never\nactually queued, and any further actions depending on it will not\nproceed.\n\nThe following warning is observed while the fnic driver is loaded:\n\nkernel: WARNING: CPU: 11 PID: 0 at ../kernel/workqueue.c:1524 __queue_work+0x373/0x410\nkernel: \u003cIRQ\u003e\nkernel: queue_work_on+0x3a/0x50\nkernel: fnic_wq_copy_cmpl_handler+0x54a/0x730 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: fnic_isr_msix_wq_copy+0x2d/0x60 [fnic 62fbff0c42e7fb825c60a55cde2fb91facb2ed24]\nkernel: __handle_irq_event_percpu+0x36/0x1a0\nkernel: handle_irq_event_percpu+0x30/0x70\nkernel: handle_irq_event+0x34/0x60\nkernel: handle_edge_irq+0x7e/0x1a0\nkernel: __common_interrupt+0x3b/0xb0\nkernel: common_interrupt+0x58/0xa0\nkernel: \u003c/IRQ\u003e\n\nIt has been observed that this may break the rediscovery of Fibre\nChannel devices after a temporary fabric failure.\n\nThis patch fixes it by moving the work queue initialization out of\nan if block in fnic_probe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50025",
"url": "https://www.suse.com/security/cve/CVE-2024-50025"
},
{
"category": "external",
"summary": "SUSE Bug 1231953 for CVE-2024-50025",
"url": "https://bugzilla.suse.com/1231953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50025"
},
{
"cve": "CVE-2024-50026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: wd33c93: Don\u0027t use stale scsi_pointer value\n\nA regression was introduced with commit dbb2da557a6a (\"scsi: wd33c93:\nMove the SCSI pointer to private command data\") which results in an oops\nin wd33c93_intr(). That commit added the scsi_pointer variable and\ninitialized it from hostdata-\u003econnected. However, during selection,\nhostdata-\u003econnected is not yet valid. Fix this by getting the current\nscsi_pointer from hostdata-\u003eselecting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50026",
"url": "https://www.suse.com/security/cve/CVE-2024-50026"
},
{
"category": "external",
"summary": "SUSE Bug 1231952 for CVE-2024-50026",
"url": "https://bugzilla.suse.com/1231952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50026"
},
{
"cve": "CVE-2024-50031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/v3d: Stop the active perfmon before being destroyed\n\nWhen running `kmscube` with one or more performance monitors enabled\nvia `GALLIUM_HUD`, the following kernel panic can occur:\n\n[ 55.008324] Unable to handle kernel paging request at virtual address 00000000052004a4\n[ 55.008368] Mem abort info:\n[ 55.008377] ESR = 0x0000000096000005\n[ 55.008387] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 55.008402] SET = 0, FnV = 0\n[ 55.008412] EA = 0, S1PTW = 0\n[ 55.008421] FSC = 0x05: level 1 translation fault\n[ 55.008434] Data abort info:\n[ 55.008442] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 55.008455] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 55.008467] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 55.008481] user pgtable: 4k pages, 39-bit VAs, pgdp=00000001046c6000\n[ 55.008497] [00000000052004a4] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000\n[ 55.008525] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n[ 55.008542] Modules linked in: rfcomm [...] vc4 v3d snd_soc_hdmi_codec drm_display_helper\ngpu_sched drm_shmem_helper cec drm_dma_helper drm_kms_helper i2c_brcmstb\ndrm drm_panel_orientation_quirks snd_soc_core snd_compress snd_pcm_dmaengine snd_pcm snd_timer snd backlight\n[ 55.008799] CPU: 2 PID: 166 Comm: v3d_bin Tainted: G C 6.6.47+rpt-rpi-v8 #1 Debian 1:6.6.47-1+rpt1\n[ 55.008824] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n[ 55.008838] pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 55.008855] pc : __mutex_lock.constprop.0+0x90/0x608\n[ 55.008879] lr : __mutex_lock.constprop.0+0x58/0x608\n[ 55.008895] sp : ffffffc080673cf0\n[ 55.008904] x29: ffffffc080673cf0 x28: 0000000000000000 x27: ffffff8106188a28\n[ 55.008926] x26: ffffff8101e78040 x25: ffffff8101baa6c0 x24: ffffffd9d989f148\n[ 55.008947] x23: ffffffda1c2a4008 x22: 0000000000000002 x21: ffffffc080673d38\n[ 55.008968] x20: ffffff8101238000 x19: ffffff8104f83188 x18: 0000000000000000\n[ 55.008988] x17: 0000000000000000 x16: ffffffda1bd04d18 x15: 00000055bb08bc90\n[ 55.009715] x14: 0000000000000000 x13: 0000000000000000 x12: ffffffda1bd4cbb0\n[ 55.010433] x11: 00000000fa83b2da x10: 0000000000001a40 x9 : ffffffda1bd04d04\n[ 55.011162] x8 : ffffff8102097b80 x7 : 0000000000000000 x6 : 00000000030a5857\n[ 55.011880] x5 : 00ffffffffffffff x4 : 0300000005200470 x3 : 0300000005200470\n[ 55.012598] x2 : ffffff8101238000 x1 : 0000000000000021 x0 : 0300000005200470\n[ 55.013292] Call trace:\n[ 55.013959] __mutex_lock.constprop.0+0x90/0x608\n[ 55.014646] __mutex_lock_slowpath+0x1c/0x30\n[ 55.015317] mutex_lock+0x50/0x68\n[ 55.015961] v3d_perfmon_stop+0x40/0xe0 [v3d]\n[ 55.016627] v3d_bin_job_run+0x10c/0x2d8 [v3d]\n[ 55.017282] drm_sched_main+0x178/0x3f8 [gpu_sched]\n[ 55.017921] kthread+0x11c/0x128\n[ 55.018554] ret_from_fork+0x10/0x20\n[ 55.019168] Code: f9400260 f1001c1f 54001ea9 927df000 (b9403401)\n[ 55.019776] ---[ end trace 0000000000000000 ]---\n[ 55.020411] note: v3d_bin[166] exited with preempt_count 1\n\nThis issue arises because, upon closing the file descriptor (which happens\nwhen we interrupt `kmscube`), the active performance monitor is not\nstopped. Although all perfmons are destroyed in `v3d_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`v3d-\u003eactive_perfmon`) is still\nretained.\n\nIf `kmscube` is run again, the driver will attempt to stop the active\nperformance monitor using the stale pointer in `v3d-\u003eactive_perfmon`.\nHowever, this pointer is no longer valid because the previous process has\nalready terminated, and all performance monitors associated with it have\nbeen destroyed and freed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50031",
"url": "https://www.suse.com/security/cve/CVE-2024-50031"
},
{
"category": "external",
"summary": "SUSE Bug 1231947 for CVE-2024-50031",
"url": "https://bugzilla.suse.com/1231947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50031"
},
{
"cve": "CVE-2024-50044",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50044"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change\n\nrfcomm_sk_state_change attempts to use sock_lock so it must never be\ncalled with it locked but rfcomm_sock_ioctl always attempt to lock it\ncausing the following trace:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted\n------------------------------------------------------\nsyz-executor386/5093 is trying to acquire lock:\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1671 [inline]\nffff88807c396258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sk_state_change+0x5b/0x310 net/bluetooth/rfcomm/sock.c:73\n\nbut task is already holding lock:\nffff88807badfd28 (\u0026d-\u003elock){+.+.}-{3:3}, at: __rfcomm_dlc_close+0x226/0x6a0 net/bluetooth/rfcomm/core.c:491",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50044",
"url": "https://www.suse.com/security/cve/CVE-2024-50044"
},
{
"category": "external",
"summary": "SUSE Bug 1231904 for CVE-2024-50044",
"url": "https://bugzilla.suse.com/1231904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50044"
},
{
"cve": "CVE-2024-50062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50062"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rtrs-srv: Avoid null pointer deref during path establishment\n\nFor RTRS path establishment, RTRS client initiates and completes con_num\nof connections. After establishing all its connections, the information\nis exchanged between the client and server through the info_req message.\nDuring this exchange, it is essential that all connections have been\nestablished, and the state of the RTRS srv path is CONNECTED.\n\nSo add these sanity checks, to make sure we detect and abort process in\nerror scenarios to avoid null pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50062",
"url": "https://www.suse.com/security/cve/CVE-2024-50062"
},
{
"category": "external",
"summary": "SUSE Bug 1232232 for CVE-2024-50062",
"url": "https://bugzilla.suse.com/1232232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50062"
},
{
"cve": "CVE-2024-50067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobe: avoid out-of-bounds memory access of fetching args\n\nUprobe needs to fetch args into a percpu buffer, and then copy to ring\nbuffer to avoid non-atomic context problem.\n\nSometimes user-space strings, arrays can be very large, but the size of\npercpu buffer is only page size. And store_trace_args() won\u0027t check\nwhether these data exceeds a single page or not, caused out-of-bounds\nmemory access.\n\nIt could be reproduced by following steps:\n1. build kernel with CONFIG_KASAN enabled\n2. save follow program as test.c\n\n```\n\\#include \u003cstdio.h\u003e\n\\#include \u003cstdlib.h\u003e\n\\#include \u003cstring.h\u003e\n\n// If string length large than MAX_STRING_SIZE, the fetch_store_strlen()\n// will return 0, cause __get_data_size() return shorter size, and\n// store_trace_args() will not trigger out-of-bounds access.\n// So make string length less than 4096.\n\\#define STRLEN 4093\n\nvoid generate_string(char *str, int n)\n{\n int i;\n for (i = 0; i \u003c n; ++i)\n {\n char c = i % 26 + \u0027a\u0027;\n str[i] = c;\n }\n str[n-1] = \u0027\\0\u0027;\n}\n\nvoid print_string(char *str)\n{\n printf(\"%s\\n\", str);\n}\n\nint main()\n{\n char tmp[STRLEN];\n\n generate_string(tmp, STRLEN);\n print_string(tmp);\n\n return 0;\n}\n```\n3. compile program\n`gcc -o test test.c`\n\n4. get the offset of `print_string()`\n```\nobjdump -t test | grep -w print_string\n0000000000401199 g F .text 000000000000001b print_string\n```\n\n5. configure uprobe with offset 0x1199\n```\noff=0x1199\n\ncd /sys/kernel/debug/tracing/\necho \"p /root/test:${off} arg1=+0(%di):ustring arg2=\\$comm arg3=+0(%di):ustring\"\n \u003e uprobe_events\necho 1 \u003e events/uprobes/enable\necho 1 \u003e tracing_on\n```\n\n6. run `test`, and kasan will report error.\n==================================================================\nBUG: KASAN: use-after-free in strncpy_from_user+0x1d6/0x1f0\nWrite of size 8 at addr ffff88812311c004 by task test/499CPU: 0 UID: 0 PID: 499 Comm: test Not tainted 6.12.0-rc3+ #18\nHardware name: Red Hat KVM, BIOS 1.16.0-4.al8 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x55/0x70\n print_address_description.constprop.0+0x27/0x310\n kasan_report+0x10f/0x120\n ? strncpy_from_user+0x1d6/0x1f0\n strncpy_from_user+0x1d6/0x1f0\n ? rmqueue.constprop.0+0x70d/0x2ad0\n process_fetch_insn+0xb26/0x1470\n ? __pfx_process_fetch_insn+0x10/0x10\n ? _raw_spin_lock+0x85/0xe0\n ? __pfx__raw_spin_lock+0x10/0x10\n ? __pte_offset_map+0x1f/0x2d0\n ? unwind_next_frame+0xc5f/0x1f80\n ? arch_stack_walk+0x68/0xf0\n ? is_bpf_text_address+0x23/0x30\n ? kernel_text_address.part.0+0xbb/0xd0\n ? __kernel_text_address+0x66/0xb0\n ? unwind_get_return_address+0x5e/0xa0\n ? __pfx_stack_trace_consume_entry+0x10/0x10\n ? arch_stack_walk+0xa2/0xf0\n ? _raw_spin_lock_irqsave+0x8b/0xf0\n ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n ? depot_alloc_stack+0x4c/0x1f0\n ? _raw_spin_unlock_irqrestore+0xe/0x30\n ? stack_depot_save_flags+0x35d/0x4f0\n ? kasan_save_stack+0x34/0x50\n ? kasan_save_stack+0x24/0x50\n ? mutex_lock+0x91/0xe0\n ? __pfx_mutex_lock+0x10/0x10\n prepare_uprobe_buffer.part.0+0x2cd/0x500\n uprobe_dispatcher+0x2c3/0x6a0\n ? __pfx_uprobe_dispatcher+0x10/0x10\n ? __kasan_slab_alloc+0x4d/0x90\n handler_chain+0xdd/0x3e0\n handle_swbp+0x26e/0x3d0\n ? __pfx_handle_swbp+0x10/0x10\n ? uprobe_pre_sstep_notifier+0x151/0x1b0\n irqentry_exit_to_user_mode+0xe2/0x1b0\n asm_exc_int3+0x39/0x40\nRIP: 0033:0x401199\nCode: 01 c2 0f b6 45 fb 88 02 83 45 fc 01 8b 45 fc 3b 45 e4 7c b7 8b 45 e4 48 98 48 8d 50 ff 48 8b 45 e8 48 01 d0 ce\nRSP: 002b:00007ffdf00576a8 EFLAGS: 00000206\nRAX: 00007ffdf00576b0 RBX: 0000000000000000 RCX: 0000000000000ff2\nRDX: 0000000000000ffc RSI: 0000000000000ffd RDI: 00007ffdf00576b0\nRBP: 00007ffdf00586b0 R08: 00007feb2f9c0d20 R09: 00007feb2f9c0d20\nR10: 0000000000000001 R11: 0000000000000202 R12: 0000000000401040\nR13: 00007ffdf0058780 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\nThis commit enforces the buffer\u0027s maxlen less than a page-size to avoid\nstore_trace_args() out-of-memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50067",
"url": "https://www.suse.com/security/cve/CVE-2024-50067"
},
{
"category": "external",
"summary": "SUSE Bug 1232416 for CVE-2024-50067",
"url": "https://bugzilla.suse.com/1232416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50067"
},
{
"cve": "CVE-2024-50073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: n_gsm: Fix use-after-free in gsm_cleanup_mux\n\nBUG: KASAN: slab-use-after-free in gsm_cleanup_mux+0x77b/0x7b0\ndrivers/tty/n_gsm.c:3160 [n_gsm]\nRead of size 8 at addr ffff88815fe99c00 by task poc/3379\nCPU: 0 UID: 0 PID: 3379 Comm: poc Not tainted 6.11.0+ #56\nHardware name: VMware, Inc. VMware Virtual Platform/440BX\nDesktop Reference Platform, BIOS 6.00 11/12/2020\nCall Trace:\n \u003cTASK\u003e\n gsm_cleanup_mux+0x77b/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n __pfx_gsm_cleanup_mux+0x10/0x10 drivers/tty/n_gsm.c:3124 [n_gsm]\n __pfx_sched_clock_cpu+0x10/0x10 kernel/sched/clock.c:389\n update_load_avg+0x1c1/0x27b0 kernel/sched/fair.c:4500\n __pfx_min_vruntime_cb_rotate+0x10/0x10 kernel/sched/fair.c:846\n __rb_insert_augmented+0x492/0xbf0 lib/rbtree.c:161\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n _raw_spin_lock_irqsave+0x92/0xf0 arch/x86/include/asm/atomic.h:107\n __pfx_gsmld_ioctl+0x10/0x10 drivers/tty/n_gsm.c:3822 [n_gsm]\n ktime_get+0x5e/0x140 kernel/time/timekeeping.c:195\n ldsem_down_read+0x94/0x4e0 arch/x86/include/asm/atomic64_64.h:79\n __pfx_ldsem_down_read+0x10/0x10 drivers/tty/tty_ldsem.c:338\n __pfx_do_vfs_ioctl+0x10/0x10 fs/ioctl.c:805\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\nAllocated by task 65:\n gsm_data_alloc.constprop.0+0x27/0x190 drivers/tty/n_gsm.c:926 [n_gsm]\n gsm_send+0x2c/0x580 drivers/tty/n_gsm.c:819 [n_gsm]\n gsm1_receive+0x547/0xad0 drivers/tty/n_gsm.c:3038 [n_gsm]\n gsmld_receive_buf+0x176/0x280 drivers/tty/n_gsm.c:3609 [n_gsm]\n tty_ldisc_receive_buf+0x101/0x1e0 drivers/tty/tty_buffer.c:391\n tty_port_default_receive_buf+0x61/0xa0 drivers/tty/tty_port.c:39\n flush_to_ldisc+0x1b0/0x750 drivers/tty/tty_buffer.c:445\n process_scheduled_works+0x2b0/0x10d0 kernel/workqueue.c:3229\n worker_thread+0x3dc/0x950 kernel/workqueue.c:3391\n kthread+0x2a3/0x370 kernel/kthread.c:389\n ret_from_fork+0x2d/0x70 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:257\n\nFreed by task 3367:\n kfree+0x126/0x420 mm/slub.c:4580\n gsm_cleanup_mux+0x36c/0x7b0 drivers/tty/n_gsm.c:3160 [n_gsm]\n gsmld_ioctl+0x395/0x1450 drivers/tty/n_gsm.c:3408 [n_gsm]\n tty_ioctl+0x643/0x1100 drivers/tty/tty_io.c:2818\n\n[Analysis]\ngsm_msg on the tx_ctrl_list or tx_data_list of gsm_mux\ncan be freed by multi threads through ioctl,which leads\nto the occurrence of uaf. Protect it by gsm tx lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50073",
"url": "https://www.suse.com/security/cve/CVE-2024-50073"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232520 for CVE-2024-50073",
"url": "https://bugzilla.suse.com/1232520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50073"
},
{
"cve": "CVE-2024-50074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50074"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nparport: Proper fix for array out-of-bounds access\n\nThe recent fix for array out-of-bounds accesses replaced sprintf()\ncalls blindly with snprintf(). However, since snprintf() returns the\nwould-be-printed size, not the actually output size, the length\ncalculation can still go over the given limit.\n\nUse scnprintf() instead of snprintf(), which returns the actually\noutput letters, for addressing the potential out-of-bounds access\nproperly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50074",
"url": "https://www.suse.com/security/cve/CVE-2024-50074"
},
{
"category": "external",
"summary": "SUSE Bug 1232507 for CVE-2024-50074",
"url": "https://bugzilla.suse.com/1232507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50074"
},
{
"cve": "CVE-2024-50077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix multiple init when debugfs is disabled\n\nIf bt_debugfs is not created successfully, which happens if either\nCONFIG_DEBUG_FS or CONFIG_DEBUG_FS_ALLOW_ALL is unset, then iso_init()\nreturns early and does not set iso_inited to true. This means that a\nsubsequent call to iso_init() will result in duplicate calls to\nproto_register(), bt_sock_register(), etc.\n\nWith CONFIG_LIST_HARDENED and CONFIG_BUG_ON_DATA_CORRUPTION enabled, the\nduplicate call to proto_register() triggers this BUG():\n\n list_add double add: new=ffffffffc0b280d0, prev=ffffffffbab56250,\n next=ffffffffc0b280d0.\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:35!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 2 PID: 887 Comm: bluetoothd Not tainted 6.10.11-1-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x9a/0xa0\n ...\n __list_add_valid_or_report+0x9a/0xa0\n proto_register+0x2b5/0x340\n iso_init+0x23/0x150 [bluetooth]\n set_iso_socket_func+0x68/0x1b0 [bluetooth]\n kmem_cache_free+0x308/0x330\n hci_sock_sendmsg+0x990/0x9e0 [bluetooth]\n __sock_sendmsg+0x7b/0x80\n sock_write_iter+0x9a/0x110\n do_iter_readv_writev+0x11d/0x220\n vfs_writev+0x180/0x3e0\n do_writev+0xca/0x100\n ...\n\nThis change removes the early return. The check for iso_debugfs being\nNULL was unnecessary, it is always NULL when iso_inited is false.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50077",
"url": "https://www.suse.com/security/cve/CVE-2024-50077"
},
{
"category": "external",
"summary": "SUSE Bug 1232504 for CVE-2024-50077",
"url": "https://bugzilla.suse.com/1232504"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50077"
},
{
"cve": "CVE-2024-50078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Call iso_exit() on module unload\n\nIf iso_init() has been called, iso_exit() must be called on module\nunload. Without that, the struct proto that iso_init() registered with\nproto_register() becomes invalid, which could cause unpredictable\nproblems later. In my case, with CONFIG_LIST_HARDENED and\nCONFIG_BUG_ON_DATA_CORRUPTION enabled, loading the module again usually\ntriggers this BUG():\n\n list_add corruption. next-\u003eprev should be prev (ffffffffb5355fd0),\n but was 0000000000000068. (next=ffffffffc0a010d0).\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:29!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 1 PID: 4159 Comm: modprobe Not tainted 6.10.11-4+bt2-ao-desktop #1\n RIP: 0010:__list_add_valid_or_report+0x61/0xa0\n ...\n __list_add_valid_or_report+0x61/0xa0\n proto_register+0x299/0x320\n hci_sock_init+0x16/0xc0 [bluetooth]\n bt_init+0x68/0xd0 [bluetooth]\n __pfx_bt_init+0x10/0x10 [bluetooth]\n do_one_initcall+0x80/0x2f0\n do_init_module+0x8b/0x230\n __do_sys_init_module+0x15f/0x190\n do_syscall_64+0x68/0x110\n ...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50078",
"url": "https://www.suse.com/security/cve/CVE-2024-50078"
},
{
"category": "external",
"summary": "SUSE Bug 1232503 for CVE-2024-50078",
"url": "https://bugzilla.suse.com/1232503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50078"
},
{
"cve": "CVE-2024-50082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race\n\nWe\u0027re seeing crashes from rq_qos_wake_function that look like this:\n\n BUG: unable to handle page fault for address: ffffafe180a40084\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 100000067 P4D 100000067 PUD 10027c067 PMD 10115d067 PTE 0\n Oops: Oops: 0002 [#1] PREEMPT SMP PTI\n CPU: 17 UID: 0 PID: 0 Comm: swapper/17 Not tainted 6.12.0-rc3-00013-geca631b8fe80 #11\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:_raw_spin_lock_irqsave+0x1d/0x40\n Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 41 54 9c 41 5c fa 65 ff 05 62 97 30 4c 31 c0 ba 01 00 00 00 \u003cf0\u003e 0f b1 17 75 0a 4c 89 e0 41 5c c3 cc cc cc cc 89 c6 e8 2c 0b 00\n RSP: 0018:ffffafe180580ca0 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: ffffafe180a3f7a8 RCX: 0000000000000011\n RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffafe180a40084\n RBP: 0000000000000000 R08: 00000000001e7240 R09: 0000000000000011\n R10: 0000000000000028 R11: 0000000000000888 R12: 0000000000000002\n R13: ffffafe180a40084 R14: 0000000000000000 R15: 0000000000000003\n FS: 0000000000000000(0000) GS:ffff9aaf1f280000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffafe180a40084 CR3: 000000010e428002 CR4: 0000000000770ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n try_to_wake_up+0x5a/0x6a0\n rq_qos_wake_function+0x71/0x80\n __wake_up_common+0x75/0xa0\n __wake_up+0x36/0x60\n scale_up.part.0+0x50/0x110\n wb_timer_fn+0x227/0x450\n ...\n\nSo rq_qos_wake_function() calls wake_up_process(data-\u003etask), which calls\ntry_to_wake_up(), which faults in raw_spin_lock_irqsave(\u0026p-\u003epi_lock).\n\np comes from data-\u003etask, and data comes from the waitqueue entry, which\nis stored on the waiter\u0027s stack in rq_qos_wait(). Analyzing the core\ndump with drgn, I found that the waiter had already woken up and moved\non to a completely unrelated code path, clobbering what was previously\ndata-\u003etask. Meanwhile, the waker was passing the clobbered garbage in\ndata-\u003etask to wake_up_process(), leading to the crash.\n\nWhat\u0027s happening is that in between rq_qos_wake_function() deleting the\nwaitqueue entry and calling wake_up_process(), rq_qos_wait() is finding\nthat it already got a token and returning. The race looks like this:\n\nrq_qos_wait() rq_qos_wake_function()\n==============================================================\nprepare_to_wait_exclusive()\n data-\u003egot_token = true;\n list_del_init(\u0026curr-\u003eentry);\nif (data.got_token)\n break;\nfinish_wait(\u0026rqw-\u003ewait, \u0026data.wq);\n ^- returns immediately because\n list_empty_careful(\u0026wq_entry-\u003eentry)\n is true\n... return, go do something else ...\n wake_up_process(data-\u003etask)\n (NO LONGER VALID!)-^\n\nNormally, finish_wait() is supposed to synchronize against the waker.\nBut, as noted above, it is returning immediately because the waitqueue\nentry has already been removed from the waitqueue.\n\nThe bug is that rq_qos_wake_function() is accessing the waitqueue entry\nAFTER deleting it. Note that autoremove_wake_function() wakes the waiter\nand THEN deletes the waitqueue entry, which is the proper order.\n\nFix it by swapping the order. We also need to use\nlist_del_init_careful() to match the list_empty_careful() in\nfinish_wait().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50082",
"url": "https://www.suse.com/security/cve/CVE-2024-50082"
},
{
"category": "external",
"summary": "SUSE Bug 1232500 for CVE-2024-50082",
"url": "https://bugzilla.suse.com/1232500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50082"
},
{
"cve": "CVE-2024-50089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50089"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50089",
"url": "https://www.suse.com/security/cve/CVE-2024-50089"
},
{
"category": "external",
"summary": "SUSE Bug 1232860 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1232860"
},
{
"category": "external",
"summary": "SUSE Bug 1233250 for CVE-2024-50089",
"url": "https://bugzilla.suse.com/1233250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50089"
},
{
"cve": "CVE-2024-50093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: intel: int340x: processor: Fix warning during module unload\n\nThe processor_thermal driver uses pcim_device_enable() to enable a PCI\ndevice, which means the device will be automatically disabled on driver\ndetach. Thus there is no need to call pci_disable_device() again on it.\n\nWith recent PCI device resource management improvements, e.g. commit\nf748a07a0b64 (\"PCI: Remove legacy pcim_release()\"), this problem is\nexposed and triggers the warining below.\n\n [ 224.010735] proc_thermal_pci 0000:00:04.0: disabling already-disabled device\n [ 224.010747] WARNING: CPU: 8 PID: 4442 at drivers/pci/pci.c:2250 pci_disable_device+0xe5/0x100\n ...\n [ 224.010844] Call Trace:\n [ 224.010845] \u003cTASK\u003e\n [ 224.010847] ? show_regs+0x6d/0x80\n [ 224.010851] ? __warn+0x8c/0x140\n [ 224.010854] ? pci_disable_device+0xe5/0x100\n [ 224.010856] ? report_bug+0x1c9/0x1e0\n [ 224.010859] ? handle_bug+0x46/0x80\n [ 224.010862] ? exc_invalid_op+0x1d/0x80\n [ 224.010863] ? asm_exc_invalid_op+0x1f/0x30\n [ 224.010867] ? pci_disable_device+0xe5/0x100\n [ 224.010869] ? pci_disable_device+0xe5/0x100\n [ 224.010871] ? kfree+0x21a/0x2b0\n [ 224.010873] pcim_disable_device+0x20/0x30\n [ 224.010875] devm_action_release+0x16/0x20\n [ 224.010878] release_nodes+0x47/0xc0\n [ 224.010880] devres_release_all+0x9f/0xe0\n [ 224.010883] device_unbind_cleanup+0x12/0x80\n [ 224.010885] device_release_driver_internal+0x1ca/0x210\n [ 224.010887] driver_detach+0x4e/0xa0\n [ 224.010889] bus_remove_driver+0x6f/0xf0\n [ 224.010890] driver_unregister+0x35/0x60\n [ 224.010892] pci_unregister_driver+0x44/0x90\n [ 224.010894] proc_thermal_pci_driver_exit+0x14/0x5f0 [processor_thermal_device_pci]\n ...\n [ 224.010921] ---[ end trace 0000000000000000 ]---\n\nRemove the excess pci_disable_device() calls.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50093",
"url": "https://www.suse.com/security/cve/CVE-2024-50093"
},
{
"category": "external",
"summary": "SUSE Bug 1232877 for CVE-2024-50093",
"url": "https://bugzilla.suse.com/1232877"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50093"
},
{
"cve": "CVE-2024-50095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mad: Improve handling of timed out WRs of mad agent\n\nCurrent timeout handler of mad agent acquires/releases mad_agent_priv\nlock for every timed out WRs. This causes heavy locking contention\nwhen higher no. of WRs are to be handled inside timeout handler.\n\nThis leads to softlockup with below trace in some use cases where\nrdma-cm path is used to establish connection between peer nodes\n\nTrace:\n-----\n BUG: soft lockup - CPU#4 stuck for 26s! [kworker/u128:3:19767]\n CPU: 4 PID: 19767 Comm: kworker/u128:3 Kdump: loaded Tainted: G OE\n ------- --- 5.14.0-427.13.1.el9_4.x86_64 #1\n Hardware name: Dell Inc. PowerEdge R740/01YM03, BIOS 2.4.8 11/26/2019\n Workqueue: ib_mad1 timeout_sends [ib_core]\n RIP: 0010:__do_softirq+0x78/0x2ac\n RSP: 0018:ffffb253449e4f98 EFLAGS: 00000246\n RAX: 00000000ffffffff RBX: 0000000000000000 RCX: 000000000000001f\n RDX: 000000000000001d RSI: 000000003d1879ab RDI: fff363b66fd3a86b\n RBP: ffffb253604cbcd8 R08: 0000009065635f3b R09: 0000000000000000\n R10: 0000000000000040 R11: ffffb253449e4ff8 R12: 0000000000000000\n R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040\n FS: 0000000000000000(0000) GS:ffff8caa1fc80000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fd9ec9db900 CR3: 0000000891934006 CR4: 00000000007706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n ? show_trace_log_lvl+0x1c4/0x2df\n ? show_trace_log_lvl+0x1c4/0x2df\n ? __irq_exit_rcu+0xa1/0xc0\n ? watchdog_timer_fn+0x1b2/0x210\n ? __pfx_watchdog_timer_fn+0x10/0x10\n ? __hrtimer_run_queues+0x127/0x2c0\n ? hrtimer_interrupt+0xfc/0x210\n ? __sysvec_apic_timer_interrupt+0x5c/0x110\n ? sysvec_apic_timer_interrupt+0x37/0x90\n ? asm_sysvec_apic_timer_interrupt+0x16/0x20\n ? __do_softirq+0x78/0x2ac\n ? __do_softirq+0x60/0x2ac\n __irq_exit_rcu+0xa1/0xc0\n sysvec_call_function_single+0x72/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_call_function_single+0x16/0x20\n RIP: 0010:_raw_spin_unlock_irq+0x14/0x30\n RSP: 0018:ffffb253604cbd88 EFLAGS: 00000247\n RAX: 000000000001960d RBX: 0000000000000002 RCX: ffff8cad2a064800\n RDX: 000000008020001b RSI: 0000000000000001 RDI: ffff8cad5d39f66c\n RBP: ffff8cad5d39f600 R08: 0000000000000001 R09: 0000000000000000\n R10: ffff8caa443e0c00 R11: ffffb253604cbcd8 R12: ffff8cacb8682538\n R13: 0000000000000005 R14: ffffb253604cbd90 R15: ffff8cad5d39f66c\n cm_process_send_error+0x122/0x1d0 [ib_cm]\n timeout_sends+0x1dd/0x270 [ib_core]\n process_one_work+0x1e2/0x3b0\n ? __pfx_worker_thread+0x10/0x10\n worker_thread+0x50/0x3a0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xdd/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x29/0x50\n \u003c/TASK\u003e\n\nSimplified timeout handler by creating local list of timed out WRs\nand invoke send handler post creating the list. The new method acquires/\nreleases lock once to fetch the list and hence helps to reduce locking\ncontetiong when processing higher no. of WRs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50095",
"url": "https://www.suse.com/security/cve/CVE-2024-50095"
},
{
"category": "external",
"summary": "SUSE Bug 1232873 for CVE-2024-50095",
"url": "https://bugzilla.suse.com/1232873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50095"
},
{
"cve": "CVE-2024-50096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error\n\nThe `nouveau_dmem_copy_one` function ensures that the copy push command is\nsent to the device firmware but does not track whether it was executed\nsuccessfully.\n\nIn the case of a copy error (e.g., firmware or hardware failure), the\ncopy push command will be sent via the firmware channel, and\n`nouveau_dmem_copy_one` will likely report success, leading to the\n`migrate_to_ram` function returning a dirty HIGH_USER page to the user.\n\nThis can result in a security vulnerability, as a HIGH_USER page that may\ncontain sensitive or corrupted data could be returned to the user.\n\nTo prevent this vulnerability, we allocate a zero page. Thus, in case of\nan error, a non-dirty (zero) page will be returned to the user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50096",
"url": "https://www.suse.com/security/cve/CVE-2024-50096"
},
{
"category": "external",
"summary": "SUSE Bug 1232870 for CVE-2024-50096",
"url": "https://bugzilla.suse.com/1232870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50096"
},
{
"cve": "CVE-2024-50098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down\n\nThere is a history of deadlock if reboot is performed at the beginning\nof booting. SDEV_QUIESCE was set for all LU\u0027s scsi_devices by UFS\nshutdown, and at that time the audio driver was waiting on\nblk_mq_submit_bio() holding a mutex_lock while reading the fw binary.\nAfter that, a deadlock issue occurred while audio driver shutdown was\nwaiting for mutex_unlock of blk_mq_submit_bio(). To solve this, set\nSDEV_OFFLINE for all LUs except WLUN, so that any I/O that comes down\nafter a UFS shutdown will return an error.\n\n[ 31.907781]I[0: swapper/0: 0] 1 130705007 1651079834 11289729804 0 D( 2) 3 ffffff882e208000 * init [device_shutdown]\n[ 31.907793]I[0: swapper/0: 0] Mutex: 0xffffff8849a2b8b0: owner[0xffffff882e28cb00 kworker/6:0 :49]\n[ 31.907806]I[0: swapper/0: 0] Call trace:\n[ 31.907810]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.907819]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.907826]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.907834]I[0: swapper/0: 0] schedule_preempt_disabled+0x24/0x40\n[ 31.907842]I[0: swapper/0: 0] __mutex_lock+0x408/0xdac\n[ 31.907849]I[0: swapper/0: 0] __mutex_lock_slowpath+0x14/0x24\n[ 31.907858]I[0: swapper/0: 0] mutex_lock+0x40/0xec\n[ 31.907866]I[0: swapper/0: 0] device_shutdown+0x108/0x280\n[ 31.907875]I[0: swapper/0: 0] kernel_restart+0x4c/0x11c\n[ 31.907883]I[0: swapper/0: 0] __arm64_sys_reboot+0x15c/0x280\n[ 31.907890]I[0: swapper/0: 0] invoke_syscall+0x70/0x158\n[ 31.907899]I[0: swapper/0: 0] el0_svc_common+0xb4/0xf4\n[ 31.907909]I[0: swapper/0: 0] do_el0_svc+0x2c/0xb0\n[ 31.907918]I[0: swapper/0: 0] el0_svc+0x34/0xe0\n[ 31.907928]I[0: swapper/0: 0] el0t_64_sync_handler+0x68/0xb4\n[ 31.907937]I[0: swapper/0: 0] el0t_64_sync+0x1a0/0x1a4\n\n[ 31.908774]I[0: swapper/0: 0] 49 0 11960702 11236868007 0 D( 2) 6 ffffff882e28cb00 * kworker/6:0 [__bio_queue_enter]\n[ 31.908783]I[0: swapper/0: 0] Call trace:\n[ 31.908788]I[0: swapper/0: 0] __switch_to+0x174/0x338\n[ 31.908796]I[0: swapper/0: 0] __schedule+0x5ec/0x9cc\n[ 31.908803]I[0: swapper/0: 0] schedule+0x7c/0xe8\n[ 31.908811]I[0: swapper/0: 0] __bio_queue_enter+0xb8/0x178\n[ 31.908818]I[0: swapper/0: 0] blk_mq_submit_bio+0x194/0x67c\n[ 31.908827]I[0: swapper/0: 0] __submit_bio+0xb8/0x19c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50098",
"url": "https://www.suse.com/security/cve/CVE-2024-50098"
},
{
"category": "external",
"summary": "SUSE Bug 1232881 for CVE-2024-50098",
"url": "https://bugzilla.suse.com/1232881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50098"
},
{
"cve": "CVE-2024-50099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Remove broken LDR (literal) uprobe support\n\nThe simulate_ldr_literal() and simulate_ldrsw_literal() functions are\nunsafe to use for uprobes. Both functions were originally written for\nuse with kprobes, and access memory with plain C accesses. When uprobes\nwas added, these were reused unmodified even though they cannot safely\naccess user memory.\n\nThere are three key problems:\n\n1) The plain C accesses do not have corresponding extable entries, and\n thus if they encounter a fault the kernel will treat these as\n unintentional accesses to user memory, resulting in a BUG() which\n will kill the kernel thread, and likely lead to further issues (e.g.\n lockup or panic()).\n\n2) The plain C accesses are subject to HW PAN and SW PAN, and so when\n either is in use, any attempt to simulate an access to user memory\n will fault. Thus neither simulate_ldr_literal() nor\n simulate_ldrsw_literal() can do anything useful when simulating a\n user instruction on any system with HW PAN or SW PAN.\n\n3) The plain C accesses are privileged, as they run in kernel context,\n and in practice can access a small range of kernel virtual addresses.\n The instructions they simulate have a range of +/-1MiB, and since the\n simulated instructions must itself be a user instructions in the\n TTBR0 address range, these can address the final 1MiB of the TTBR1\n acddress range by wrapping downwards from an address in the first\n 1MiB of the TTBR0 address range.\n\n In contemporary kernels the last 8MiB of TTBR1 address range is\n reserved, and accesses to this will always fault, meaning this is no\n worse than (1).\n\n Historically, it was theoretically possible for the linear map or\n vmemmap to spill into the final 8MiB of the TTBR1 address range, but\n in practice this is extremely unlikely to occur as this would\n require either:\n\n * Having enough physical memory to fill the entire linear map all the\n way to the final 1MiB of the TTBR1 address range.\n\n * Getting unlucky with KASLR randomization of the linear map such\n that the populated region happens to overlap with the last 1MiB of\n the TTBR address range.\n\n ... and in either case if we were to spill into the final page there\n would be larger problems as the final page would alias with error\n pointers.\n\nPractically speaking, (1) and (2) are the big issues. Given there have\nbeen no reports of problems since the broken code was introduced, it\nappears that no-one is relying on probing these instructions with\nuprobes.\n\nAvoid these issues by not allowing uprobes on LDR (literal) and LDRSW\n(literal), limiting the use of simulate_ldr_literal() and\nsimulate_ldrsw_literal() to kprobes. Attempts to place uprobes on LDR\n(literal) and LDRSW (literal) will be rejected as\narm_probe_decode_insn() will return INSN_REJECTED. In future we can\nconsider introducing working uprobes support for these instructions, but\nthis will require more significant work.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50099",
"url": "https://www.suse.com/security/cve/CVE-2024-50099"
},
{
"category": "external",
"summary": "SUSE Bug 1232887 for CVE-2024-50099",
"url": "https://bugzilla.suse.com/1232887"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50099"
},
{
"cve": "CVE-2024-50103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe()\n\nA devm_kzalloc() in asoc_qcom_lpass_cpu_platform_probe() could\npossibly return NULL pointer. NULL Pointer Dereference may be\ntriggerred without addtional check.\nAdd a NULL check for the returned pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50103",
"url": "https://www.suse.com/security/cve/CVE-2024-50103"
},
{
"category": "external",
"summary": "SUSE Bug 1232878 for CVE-2024-50103",
"url": "https://bugzilla.suse.com/1232878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50103"
},
{
"cve": "CVE-2024-50108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable PSR-SU on Parade 08-01 TCON too\n\nStuart Hayhurst has found that both at bootup and fullscreen VA-API video\nis leading to black screens for around 1 second and kernel WARNING [1] traces\nwhen calling dmub_psr_enable() with Parade 08-01 TCON.\n\nThese symptoms all go away with PSR-SU disabled for this TCON, so disable\nit for now while DMUB traces [2] from the failure can be analyzed and the failure\nstate properly root caused.\n\n(cherry picked from commit afb634a6823d8d9db23c5fb04f79c5549349628b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50108",
"url": "https://www.suse.com/security/cve/CVE-2024-50108"
},
{
"category": "external",
"summary": "SUSE Bug 1232884 for CVE-2024-50108",
"url": "https://bugzilla.suse.com/1232884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50108"
},
{
"cve": "CVE-2024-50110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: fix one more kernel-infoleak in algo dumping\n\nDuring fuzz testing, the following issue was discovered:\n\nBUG: KMSAN: kernel-infoleak in _copy_to_iter+0x598/0x2a30\n _copy_to_iter+0x598/0x2a30\n __skb_datagram_iter+0x168/0x1060\n skb_copy_datagram_iter+0x5b/0x220\n netlink_recvmsg+0x362/0x1700\n sock_recvmsg+0x2dc/0x390\n __sys_recvfrom+0x381/0x6d0\n __x64_sys_recvfrom+0x130/0x200\n x64_sys_call+0x32c8/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was stored to memory at:\n copy_to_user_state_extra+0xcc1/0x1e00\n dump_one_state+0x28c/0x5f0\n xfrm_state_walk+0x548/0x11e0\n xfrm_dump_sa+0x1e0/0x840\n netlink_dump+0x943/0x1c40\n __netlink_dump_start+0x746/0xdb0\n xfrm_user_rcv_msg+0x429/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nUninit was created at:\n __kmalloc+0x571/0xd30\n attach_auth+0x106/0x3e0\n xfrm_add_sa+0x2aa0/0x4230\n xfrm_user_rcv_msg+0x832/0xc00\n netlink_rcv_skb+0x613/0x780\n xfrm_netlink_rcv+0x77/0xc0\n netlink_unicast+0xe90/0x1280\n netlink_sendmsg+0x126d/0x1490\n __sock_sendmsg+0x332/0x3d0\n ____sys_sendmsg+0x863/0xc30\n ___sys_sendmsg+0x285/0x3e0\n __x64_sys_sendmsg+0x2d6/0x560\n x64_sys_call+0x1316/0x3cc0\n do_syscall_64+0xd8/0x1c0\n entry_SYSCALL_64_after_hwframe+0x79/0x81\n\nBytes 328-379 of 732 are uninitialized\nMemory access of size 732 starts at ffff88800e18e000\nData copied to user address 00007ff30f48aff0\n\nCPU: 2 PID: 18167 Comm: syz-executor.0 Not tainted 6.8.11 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n\nFixes copying of xfrm algorithms where some random\ndata of the structure fields can end up in userspace.\nPadding in structures may be filled with random (possibly sensitve)\ndata and should never be given directly to user-space.\n\nA similar issue was resolved in the commit\n8222d5910dae (\"xfrm: Zero padding when dumping algos and encap\")\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50110",
"url": "https://www.suse.com/security/cve/CVE-2024-50110"
},
{
"category": "external",
"summary": "SUSE Bug 1232885 for CVE-2024-50110",
"url": "https://bugzilla.suse.com/1232885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50110"
},
{
"cve": "CVE-2024-50115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory\n\nIgnore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits\n4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn\u0027t\nenforce 32-byte alignment of nCR3.\n\nIn the absolute worst case scenario, failure to ignore bits 4:0 can result\nin an out-of-bounds read, e.g. if the target page is at the end of a\nmemslot, and the VMM isn\u0027t using guard pages.\n\nPer the APM:\n\n The CR3 register points to the base address of the page-directory-pointer\n table. The page-directory-pointer table is aligned on a 32-byte boundary,\n with the low 5 address bits 4:0 assumed to be 0.\n\nAnd the SDM\u0027s much more explicit:\n\n 4:0 Ignored\n\nNote, KVM gets this right when loading PDPTRs, it\u0027s only the nSVM flow\nthat is broken.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50115",
"url": "https://www.suse.com/security/cve/CVE-2024-50115"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1232919 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1232919"
},
{
"category": "external",
"summary": "SUSE Bug 1233019 for CVE-2024-50115",
"url": "https://bugzilla.suse.com/1233019"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50115"
},
{
"cve": "CVE-2024-50116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of buffer delay flag\n\nSyzbot reported that after nilfs2 reads a corrupted file system image\nand degrades to read-only, the BUG_ON check for the buffer delay flag\nin submit_bh_wbc() may fail, causing a kernel bug.\n\nThis is because the buffer delay flag is not cleared when clearing the\nbuffer state flags to discard a page/folio or a buffer head. So, fix\nthis.\n\nThis became necessary when the use of nilfs2\u0027s own page clear routine\nwas expanded. This state inconsistency does not occur if the buffer\nis written normally by log writing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50116",
"url": "https://www.suse.com/security/cve/CVE-2024-50116"
},
{
"category": "external",
"summary": "SUSE Bug 1232892 for CVE-2024-50116",
"url": "https://bugzilla.suse.com/1232892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50116"
},
{
"cve": "CVE-2024-50117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd: Guard against bad data for ATIF ACPI method\n\nIf a BIOS provides bad data in response to an ATIF method call\nthis causes a NULL pointer dereference in the caller.\n\n```\n? show_regs (arch/x86/kernel/dumpstack.c:478 (discriminator 1))\n? __die (arch/x86/kernel/dumpstack.c:423 arch/x86/kernel/dumpstack.c:434)\n? page_fault_oops (arch/x86/mm/fault.c:544 (discriminator 2) arch/x86/mm/fault.c:705 (discriminator 2))\n? do_user_addr_fault (arch/x86/mm/fault.c:440 (discriminator 1) arch/x86/mm/fault.c:1232 (discriminator 1))\n? acpi_ut_update_object_reference (drivers/acpi/acpica/utdelete.c:642)\n? exc_page_fault (arch/x86/mm/fault.c:1542)\n? asm_exc_page_fault (./arch/x86/include/asm/idtentry.h:623)\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:387 (discriminator 2)) amdgpu\n? amdgpu_atif_query_backlight_caps.constprop.0 (drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c:386 (discriminator 1)) amdgpu\n```\n\nIt has been encountered on at least one system, so guard for it.\n\n(cherry picked from commit c9b7c809b89f24e9372a4e7f02d64c950b07fdee)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50117",
"url": "https://www.suse.com/security/cve/CVE-2024-50117"
},
{
"category": "external",
"summary": "SUSE Bug 1232897 for CVE-2024-50117",
"url": "https://bugzilla.suse.com/1232897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50117"
},
{
"cve": "CVE-2024-50124",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50124"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: Fix UAF on iso_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for iso_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\niso_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50124",
"url": "https://www.suse.com/security/cve/CVE-2024-50124"
},
{
"category": "external",
"summary": "SUSE Bug 1232926 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232926"
},
{
"category": "external",
"summary": "SUSE Bug 1232927 for CVE-2024-50124",
"url": "https://bugzilla.suse.com/1232927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50124"
},
{
"cve": "CVE-2024-50125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_sock_timeout\n\nconn-\u003esk maybe have been unlinked/freed while waiting for sco_conn_lock\nso this checks if the conn-\u003esk is still valid by checking if it part of\nsco_sk_list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50125",
"url": "https://www.suse.com/security/cve/CVE-2024-50125"
},
{
"category": "external",
"summary": "SUSE Bug 1232928 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232928"
},
{
"category": "external",
"summary": "SUSE Bug 1232929 for CVE-2024-50125",
"url": "https://bugzilla.suse.com/1232929"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50125"
},
{
"cve": "CVE-2024-50127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix use-after-free in taprio_change()\n\nIn \u0027taprio_change()\u0027, \u0027admin\u0027 pointer may become dangling due to sched\nswitch / removal caused by \u0027advance_sched()\u0027, and critical section\nprotected by \u0027q-\u003ecurrent_entry_lock\u0027 is too small to prevent from such\na scenario (which causes use-after-free detected by KASAN). Fix this\nby prefer \u0027rcu_replace_pointer()\u0027 over \u0027rcu_assign_pointer()\u0027 to update\n\u0027admin\u0027 immediately before an attempt to schedule freeing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50127",
"url": "https://www.suse.com/security/cve/CVE-2024-50127"
},
{
"category": "external",
"summary": "SUSE Bug 1232907 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232907"
},
{
"category": "external",
"summary": "SUSE Bug 1232908 for CVE-2024-50127",
"url": "https://bugzilla.suse.com/1232908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50127"
},
{
"cve": "CVE-2024-50128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50128"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: fix global oob in wwan_rtnl_policy\n\nThe variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to\na global out-of-bounds read when parsing the netlink attributes. Exactly\nsame bug cause as the oob fixed in commit b33fb5b801c6 (\"net: qualcomm:\nrmnet: fix global oob in rmnet_policy\").\n\n==================================================================\nBUG: KASAN: global-out-of-bounds in validate_nla lib/nlattr.c:388 [inline]\nBUG: KASAN: global-out-of-bounds in __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\nRead of size 1 at addr ffffffff8b09cb60 by task syz.1.66276/323862\n\nCPU: 0 PID: 323862 Comm: syz.1.66276 Not tainted 6.1.70 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x177/0x231 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x14f/0x750 mm/kasan/report.c:395\n kasan_report+0x139/0x170 mm/kasan/report.c:495\n validate_nla lib/nlattr.c:388 [inline]\n __nla_validate_parse+0x19d7/0x29a0 lib/nlattr.c:603\n __nla_parse+0x3c/0x50 lib/nlattr.c:700\n nla_parse_nested_deprecated include/net/netlink.h:1269 [inline]\n __rtnl_newlink net/core/rtnetlink.c:3514 [inline]\n rtnl_newlink+0x7bc/0x1fd0 net/core/rtnetlink.c:3623\n rtnetlink_rcv_msg+0x794/0xef0 net/core/rtnetlink.c:6122\n netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2508\n netlink_unicast_kernel net/netlink/af_netlink.c:1326 [inline]\n netlink_unicast+0x74b/0x8c0 net/netlink/af_netlink.c:1352\n netlink_sendmsg+0x882/0xb90 net/netlink/af_netlink.c:1874\n sock_sendmsg_nosec net/socket.c:716 [inline]\n __sock_sendmsg net/socket.c:728 [inline]\n ____sys_sendmsg+0x5cc/0x8f0 net/socket.c:2499\n ___sys_sendmsg+0x21c/0x290 net/socket.c:2553\n __sys_sendmsg net/socket.c:2582 [inline]\n __do_sys_sendmsg net/socket.c:2591 [inline]\n __se_sys_sendmsg+0x19e/0x270 net/socket.c:2589\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x45/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f67b19a24ad\nRSP: 002b:00007f67b17febb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f67b1b45f80 RCX: 00007f67b19a24ad\nRDX: 0000000000000000 RSI: 0000000020005e40 RDI: 0000000000000004\nRBP: 00007f67b1a1e01d R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffd2513764f R14: 00007ffd251376e0 R15: 00007f67b17fed40\n \u003c/TASK\u003e\n\nThe buggy address belongs to the variable:\n wwan_rtnl_policy+0x20/0x40\n\nThe buggy address belongs to the physical page:\npage:ffffea00002c2700 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb09c\nflags: 0xfff00000001000(reserved|node=0|zone=1|lastcpupid=0x7ff)\nraw: 00fff00000001000 ffffea00002c2708 ffffea00002c2708 0000000000000000\nraw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\npage_owner info is not present (never set?)\n\nMemory state around the buggy address:\n ffffffff8b09ca00: 05 f9 f9 f9 05 f9 f9 f9 00 01 f9 f9 00 01 f9 f9\n ffffffff8b09ca80: 00 00 00 05 f9 f9 f9 f9 00 00 03 f9 f9 f9 f9 f9\n\u003effffffff8b09cb00: 00 00 00 00 05 f9 f9 f9 00 00 00 00 f9 f9 f9 f9\n ^\n ffffffff8b09cb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n==================================================================\n\nAccording to the comment of `nla_parse_nested_deprecated`, use correct size\n`IFLA_WWAN_MAX` here to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50128",
"url": "https://www.suse.com/security/cve/CVE-2024-50128"
},
{
"category": "external",
"summary": "SUSE Bug 1232905 for CVE-2024-50128",
"url": "https://bugzilla.suse.com/1232905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50128"
},
{
"cve": "CVE-2024-50131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Consider the NULL character when validating the event length\n\nstrlen() returns a string length excluding the null byte. If the string\nlength equals to the maximum buffer length, the buffer will have no\nspace for the NULL terminating character.\n\nThis commit checks this condition and returns failure for it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50131",
"url": "https://www.suse.com/security/cve/CVE-2024-50131"
},
{
"category": "external",
"summary": "SUSE Bug 1232896 for CVE-2024-50131",
"url": "https://bugzilla.suse.com/1232896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50131"
},
{
"cve": "CVE-2024-50134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA\n\nReplace the fake VLA at end of the vbva_mouse_pointer_shape shape with\na real VLA to fix a \"memcpy: detected field-spanning write error\" warning:\n\n[ 13.319813] memcpy: detected field-spanning write (size 16896) of single field \"p-\u003edata\" at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 (size 4)\n[ 13.319841] WARNING: CPU: 0 PID: 1105 at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 hgsmi_update_pointer_shape+0x192/0x1c0 [vboxvideo]\n[ 13.320038] Call Trace:\n[ 13.320173] hgsmi_update_pointer_shape [vboxvideo]\n[ 13.320184] vbox_cursor_atomic_update [vboxvideo]\n\nNote as mentioned in the added comment it seems the original length\ncalculation for the allocated and send hgsmi buffer is 4 bytes too large.\nChanging this is not the goal of this patch, so this behavior is kept.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50134",
"url": "https://www.suse.com/security/cve/CVE-2024-50134"
},
{
"category": "external",
"summary": "SUSE Bug 1232890 for CVE-2024-50134",
"url": "https://bugzilla.suse.com/1232890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50134"
},
{
"cve": "CVE-2024-50135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-pci: fix race condition between reset and nvme_dev_disable()\n\nnvme_dev_disable() modifies the dev-\u003eonline_queues field, therefore\nnvme_pci_update_nr_queues() should avoid racing against it, otherwise\nwe could end up passing invalid values to blk_mq_update_nr_hw_queues().\n\n WARNING: CPU: 39 PID: 61303 at drivers/pci/msi/api.c:347\n pci_irq_get_affinity+0x187/0x210\n Workqueue: nvme-reset-wq nvme_reset_work [nvme]\n RIP: 0010:pci_irq_get_affinity+0x187/0x210\n Call Trace:\n \u003cTASK\u003e\n ? blk_mq_pci_map_queues+0x87/0x3c0\n ? pci_irq_get_affinity+0x187/0x210\n blk_mq_pci_map_queues+0x87/0x3c0\n nvme_pci_map_queues+0x189/0x460 [nvme]\n blk_mq_update_nr_hw_queues+0x2a/0x40\n nvme_reset_work+0x1be/0x2a0 [nvme]\n\nFix the bug by locking the shutdown_lock mutex before using\ndev-\u003eonline_queues. Give up if nvme_dev_disable() is running or if\nit has been executed already.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50135",
"url": "https://www.suse.com/security/cve/CVE-2024-50135"
},
{
"category": "external",
"summary": "SUSE Bug 1232888 for CVE-2024-50135",
"url": "https://bugzilla.suse.com/1232888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50135"
},
{
"cve": "CVE-2024-50138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Use raw_spinlock_t in ringbuf\n\nThe function __bpf_ringbuf_reserve is invoked from a tracepoint, which\ndisables preemption. Using spinlock_t in this context can lead to a\n\"sleep in atomic\" warning in the RT variant. This issue is illustrated\nin the example below:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 556208, name: test_progs\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\nINFO: lockdep is turned off.\nPreemption disabled at:\n[\u003cffffd33a5c88ea44\u003e] migrate_enable+0xc0/0x39c\nCPU: 7 PID: 556208 Comm: test_progs Tainted: G\nHardware name: Qualcomm SA8775P Ride (DT)\nCall trace:\n dump_backtrace+0xac/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0xac/0xe8\n dump_stack+0x18/0x30\n __might_resched+0x3bc/0x4fc\n rt_spin_lock+0x8c/0x1a4\n __bpf_ringbuf_reserve+0xc4/0x254\n bpf_ringbuf_reserve_dynptr+0x5c/0xdc\n bpf_prog_ac3d15160d62622a_test_read_write+0x104/0x238\n trace_call_bpf+0x238/0x774\n perf_call_bpf_enter.isra.0+0x104/0x194\n perf_syscall_enter+0x2f8/0x510\n trace_sys_enter+0x39c/0x564\n syscall_trace_enter+0x220/0x3c0\n do_el0_svc+0x138/0x1dc\n el0_svc+0x54/0x130\n el0t_64_sync_handler+0x134/0x150\n el0t_64_sync+0x17c/0x180\n\nSwitch the spinlock to raw_spinlock_t to avoid this error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50138",
"url": "https://www.suse.com/security/cve/CVE-2024-50138"
},
{
"category": "external",
"summary": "SUSE Bug 1232935 for CVE-2024-50138",
"url": "https://bugzilla.suse.com/1232935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50138"
},
{
"cve": "CVE-2024-50141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context\n\nPRMT needs to find the correct type of block to translate the PA-VA\nmapping for EFI runtime services.\n\nThe issue arises because the PRMT is finding a block of type\nEFI_CONVENTIONAL_MEMORY, which is not appropriate for runtime services\nas described in Section 2.2.2 (Runtime Services) of the UEFI\nSpecification [1]. Since the PRM handler is a type of runtime service,\nthis causes an exception when the PRM handler is called.\n\n [Firmware Bug]: Unable to handle paging request in EFI runtime service\n WARNING: CPU: 22 PID: 4330 at drivers/firmware/efi/runtime-wrappers.c:341\n __efi_queue_work+0x11c/0x170\n Call trace:\n\nLet PRMT find a block with EFI_MEMORY_RUNTIME for PRM handler and PRM\ncontext.\n\nIf no suitable block is found, a warning message will be printed, but\nthe procedure continues to manage the next PRM handler.\n\nHowever, if the PRM handler is actually called without proper allocation,\nit would result in a failure during error handling.\n\nBy using the correct memory types for runtime services, ensure that the\nPRM handler and the context are properly mapped in the virtual address\nspace during runtime, preventing the paging request error.\n\nThe issue is really that only memory that has been remapped for runtime\nby the firmware can be used by the PRM handler, and so the region needs\nto have the EFI_MEMORY_RUNTIME attribute.\n\n[ rjw: Subject and changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50141",
"url": "https://www.suse.com/security/cve/CVE-2024-50141"
},
{
"category": "external",
"summary": "SUSE Bug 1233065 for CVE-2024-50141",
"url": "https://bugzilla.suse.com/1233065"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50141"
},
{
"cve": "CVE-2024-50146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t call cleanup on profile rollback failure\n\nWhen profile rollback fails in mlx5e_netdev_change_profile, the netdev\nprofile var is left set to NULL. Avoid a crash when unloading the driver\nby not calling profile-\u003ecleanup in such a case.\n\nThis was encountered while testing, with the original trigger that\nthe wq rescuer thread creation got interrupted (presumably due to\nCtrl+C-ing modprobe), which gets converted to ENOMEM (-12) by\nmlx5e_priv_init, the profile rollback also fails for the same reason\n(signal still active) so the profile is left as NULL, leading to a crash\nlater in _mlx5e_remove.\n\n [ 732.473932] mlx5_core 0000:08:00.1: E-Switch: Unload vfs: mode(OFFLOADS), nvfs(2), necvfs(0), active vports(2)\n [ 734.525513] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.557372] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.559187] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: new profile init failed, -12\n [ 734.560153] workqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\n [ 734.589378] mlx5_core 0000:08:00.1: mlx5e_netdev_init_profile:6235:(pid 6086): mlx5e_priv_init failed, err=-12\n [ 734.591136] mlx5_core 0000:08:00.1 eth3: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n [ 745.537492] BUG: kernel NULL pointer dereference, address: 0000000000000008\n [ 745.538222] #PF: supervisor read access in kernel mode\n\u003csnipped\u003e\n [ 745.551290] Call Trace:\n [ 745.551590] \u003cTASK\u003e\n [ 745.551866] ? __die+0x20/0x60\n [ 745.552218] ? page_fault_oops+0x150/0x400\n [ 745.555307] ? exc_page_fault+0x79/0x240\n [ 745.555729] ? asm_exc_page_fault+0x22/0x30\n [ 745.556166] ? mlx5e_remove+0x6b/0xb0 [mlx5_core]\n [ 745.556698] auxiliary_bus_remove+0x18/0x30\n [ 745.557134] device_release_driver_internal+0x1df/0x240\n [ 745.557654] bus_remove_device+0xd7/0x140\n [ 745.558075] device_del+0x15b/0x3c0\n [ 745.558456] mlx5_rescan_drivers_locked.part.0+0xb1/0x2f0 [mlx5_core]\n [ 745.559112] mlx5_unregister_device+0x34/0x50 [mlx5_core]\n [ 745.559686] mlx5_uninit_one+0x46/0xf0 [mlx5_core]\n [ 745.560203] remove_one+0x4e/0xd0 [mlx5_core]\n [ 745.560694] pci_device_remove+0x39/0xa0\n [ 745.561112] device_release_driver_internal+0x1df/0x240\n [ 745.561631] driver_detach+0x47/0x90\n [ 745.562022] bus_remove_driver+0x84/0x100\n [ 745.562444] pci_unregister_driver+0x3b/0x90\n [ 745.562890] mlx5_cleanup+0xc/0x1b [mlx5_core]\n [ 745.563415] __x64_sys_delete_module+0x14d/0x2f0\n [ 745.563886] ? kmem_cache_free+0x1b0/0x460\n [ 745.564313] ? lockdep_hardirqs_on_prepare+0xe2/0x190\n [ 745.564825] do_syscall_64+0x6d/0x140\n [ 745.565223] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n [ 745.565725] RIP: 0033:0x7f1579b1288b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50146",
"url": "https://www.suse.com/security/cve/CVE-2024-50146"
},
{
"category": "external",
"summary": "SUSE Bug 1233056 for CVE-2024-50146",
"url": "https://bugzilla.suse.com/1233056"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50146"
},
{
"cve": "CVE-2024-50147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix command bitmask initialization\n\nCommand bitmask have a dedicated bit for MANAGE_PAGES command, this bit\nisn\u0027t Initialize during command bitmask Initialization, only during\nMANAGE_PAGES.\n\nIn addition, mlx5_cmd_trigger_completions() is trying to trigger\ncompletion for MANAGE_PAGES command as well.\n\nHence, in case health error occurred before any MANAGE_PAGES command\nhave been invoke (for example, during mlx5_enable_hca()),\nmlx5_cmd_trigger_completions() will try to trigger completion for\nMANAGE_PAGES command, which will result in null-ptr-deref error.[1]\n\nFix it by Initialize command bitmask correctly.\n\nWhile at it, re-write the code for better understanding.\n\n[1]\nBUG: KASAN: null-ptr-deref in mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\nWrite of size 4 at addr 0000000000000214 by task kworker/u96:2/12078\nCPU: 10 PID: 12078 Comm: kworker/u96:2 Not tainted 6.9.0-rc2_for_upstream_debug_2024_04_07_19_01 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nWorkqueue: mlx5_health0000:08:00.0 mlx5_fw_fatal_reporter_err_work [mlx5_core]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x7e/0xc0\n kasan_report+0xb9/0xf0\n kasan_check_range+0xec/0x190\n mlx5_cmd_trigger_completions+0x1db/0x600 [mlx5_core]\n mlx5_cmd_flush+0x94/0x240 [mlx5_core]\n enter_error_state+0x6c/0xd0 [mlx5_core]\n mlx5_fw_fatal_reporter_err_work+0xf3/0x480 [mlx5_core]\n process_one_work+0x787/0x1490\n ? lockdep_hardirqs_on_prepare+0x400/0x400\n ? pwq_dec_nr_in_flight+0xda0/0xda0\n ? assign_work+0x168/0x240\n worker_thread+0x586/0xd30\n ? rescuer_thread+0xae0/0xae0\n kthread+0x2df/0x3b0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x2d/0x70\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50147",
"url": "https://www.suse.com/security/cve/CVE-2024-50147"
},
{
"category": "external",
"summary": "SUSE Bug 1233067 for CVE-2024-50147",
"url": "https://bugzilla.suse.com/1233067"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50147"
},
{
"cve": "CVE-2024-50148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bnep: fix wild-memory-access in proto_unregister\n\nThere\u0027s issue as follows:\n KASAN: maybe wild-memory-access in range [0xdead...108-0xdead...10f]\n CPU: 3 UID: 0 PID: 2805 Comm: rmmod Tainted: G W\n RIP: 0010:proto_unregister+0xee/0x400\n Call Trace:\n \u003cTASK\u003e\n __do_sys_delete_module+0x318/0x580\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nAs bnep_init() ignore bnep_sock_init()\u0027s return value, and bnep_sock_init()\nwill cleanup all resource. Then when remove bnep module will call\nbnep_sock_cleanup() to cleanup sock\u0027s resource.\nTo solve above issue just return bnep_sock_init()\u0027s return value in\nbnep_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50148",
"url": "https://www.suse.com/security/cve/CVE-2024-50148"
},
{
"category": "external",
"summary": "SUSE Bug 1233063 for CVE-2024-50148",
"url": "https://bugzilla.suse.com/1233063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50148"
},
{
"cve": "CVE-2024-50150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: altmode should keep reference to parent\n\nThe altmode device release refers to its parent device, but without keeping\na reference to it.\n\nWhen registering the altmode, get a reference to the parent and put it in\nthe release function.\n\nBefore this fix, when using CONFIG_DEBUG_KOBJECT_RELEASE, we see issues\nlike this:\n\n[ 43.572860] kobject: \u0027port0.0\u0027 (ffff8880057ba008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.573532] kobject: \u0027port0.1\u0027 (ffff8880057bd008): kobject_release, parent 0000000000000000 (delayed 1000)\n[ 43.574407] kobject: \u0027port0\u0027 (ffff8880057b9008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 43.575059] kobject: \u0027port1.0\u0027 (ffff8880057ca008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.575908] kobject: \u0027port1.1\u0027 (ffff8880057c9008): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.576908] kobject: \u0027typec\u0027 (ffff8880062dbc00): kobject_release, parent 0000000000000000 (delayed 4000)\n[ 43.577769] kobject: \u0027port1\u0027 (ffff8880057bf008): kobject_release, parent 0000000000000000 (delayed 3000)\n[ 46.612867] ==================================================================\n[ 46.613402] BUG: KASAN: slab-use-after-free in typec_altmode_release+0x38/0x129\n[ 46.614003] Read of size 8 at addr ffff8880057b9118 by task kworker/2:1/48\n[ 46.614538]\n[ 46.614668] CPU: 2 UID: 0 PID: 48 Comm: kworker/2:1 Not tainted 6.12.0-rc1-00138-gedbae730ad31 #535\n[ 46.615391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n[ 46.616042] Workqueue: events kobject_delayed_cleanup\n[ 46.616446] Call Trace:\n[ 46.616648] \u003cTASK\u003e\n[ 46.616820] dump_stack_lvl+0x5b/0x7c\n[ 46.617112] ? typec_altmode_release+0x38/0x129\n[ 46.617470] print_report+0x14c/0x49e\n[ 46.617769] ? rcu_read_unlock_sched+0x56/0x69\n[ 46.618117] ? __virt_addr_valid+0x19a/0x1ab\n[ 46.618456] ? kmem_cache_debug_flags+0xc/0x1d\n[ 46.618807] ? typec_altmode_release+0x38/0x129\n[ 46.619161] kasan_report+0x8d/0xb4\n[ 46.619447] ? typec_altmode_release+0x38/0x129\n[ 46.619809] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620185] typec_altmode_release+0x38/0x129\n[ 46.620537] ? process_scheduled_works+0x3cb/0x85f\n[ 46.620907] device_release+0xaf/0xf2\n[ 46.621206] kobject_delayed_cleanup+0x13b/0x17a\n[ 46.621584] process_scheduled_works+0x4f6/0x85f\n[ 46.621955] ? __pfx_process_scheduled_works+0x10/0x10\n[ 46.622353] ? hlock_class+0x31/0x9a\n[ 46.622647] ? lock_acquired+0x361/0x3c3\n[ 46.622956] ? move_linked_works+0x46/0x7d\n[ 46.623277] worker_thread+0x1ce/0x291\n[ 46.623582] ? __kthread_parkme+0xc8/0xdf\n[ 46.623900] ? __pfx_worker_thread+0x10/0x10\n[ 46.624236] kthread+0x17e/0x190\n[ 46.624501] ? kthread+0xfb/0x190\n[ 46.624756] ? __pfx_kthread+0x10/0x10\n[ 46.625015] ret_from_fork+0x20/0x40\n[ 46.625268] ? __pfx_kthread+0x10/0x10\n[ 46.625532] ret_from_fork_asm+0x1a/0x30\n[ 46.625805] \u003c/TASK\u003e\n[ 46.625953]\n[ 46.626056] Allocated by task 678:\n[ 46.626287] kasan_save_stack+0x24/0x44\n[ 46.626555] kasan_save_track+0x14/0x2d\n[ 46.626811] __kasan_kmalloc+0x3f/0x4d\n[ 46.627049] __kmalloc_noprof+0x1bf/0x1f0\n[ 46.627362] typec_register_port+0x23/0x491\n[ 46.627698] cros_typec_probe+0x634/0xbb6\n[ 46.628026] platform_probe+0x47/0x8c\n[ 46.628311] really_probe+0x20a/0x47d\n[ 46.628605] device_driver_attach+0x39/0x72\n[ 46.628940] bind_store+0x87/0xd7\n[ 46.629213] kernfs_fop_write_iter+0x1aa/0x218\n[ 46.629574] vfs_write+0x1d6/0x29b\n[ 46.629856] ksys_write+0xcd/0x13b\n[ 46.630128] do_syscall_64+0xd4/0x139\n[ 46.630420] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[ 46.630820]\n[ 46.630946] Freed by task 48:\n[ 46.631182] kasan_save_stack+0x24/0x44\n[ 46.631493] kasan_save_track+0x14/0x2d\n[ 46.631799] kasan_save_free_info+0x3f/0x4d\n[ 46.632144] __kasan_slab_free+0x37/0x45\n[ 46.632474]\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50150",
"url": "https://www.suse.com/security/cve/CVE-2024-50150"
},
{
"category": "external",
"summary": "SUSE Bug 1233051 for CVE-2024-50150",
"url": "https://bugzilla.suse.com/1233051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50150"
},
{
"cve": "CVE-2024-50153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix null-ptr-deref in target_alloc_device()\n\nThere is a null-ptr-deref issue reported by KASAN:\n\nBUG: KASAN: null-ptr-deref in target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n...\n kasan_report+0xb9/0xf0\n target_alloc_device+0xbc4/0xbe0 [target_core_mod]\n core_dev_setup_virtual_lun0+0xef/0x1f0 [target_core_mod]\n target_core_init_configfs+0x205/0x420 [target_core_mod]\n do_one_initcall+0xdd/0x4e0\n...\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nIn target_alloc_device(), if allocing memory for dev queues fails, then\ndev will be freed by dev-\u003etransport-\u003efree_device(), but dev-\u003etransport\nis not initialized at that time, which will lead to a null pointer\nreference problem.\n\nFixing this bug by freeing dev with hba-\u003ebackend-\u003eops-\u003efree_device().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50153",
"url": "https://www.suse.com/security/cve/CVE-2024-50153"
},
{
"category": "external",
"summary": "SUSE Bug 1233061 for CVE-2024-50153",
"url": "https://bugzilla.suse.com/1233061"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50153"
},
{
"cve": "CVE-2024-50154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp/dccp: Don\u0027t use timer_pending() in reqsk_queue_unlink().\n\nMartin KaFai Lau reported use-after-free [0] in reqsk_timer_handler().\n\n \"\"\"\n We are seeing a use-after-free from a bpf prog attached to\n trace_tcp_retransmit_synack. The program passes the req-\u003esk to the\n bpf_sk_storage_get_tracing kernel helper which does check for null\n before using it.\n \"\"\"\n\nThe commit 83fccfc3940c (\"inet: fix potential deadlock in\nreqsk_queue_unlink()\") added timer_pending() in reqsk_queue_unlink() not\nto call del_timer_sync() from reqsk_timer_handler(), but it introduced a\nsmall race window.\n\nBefore the timer is called, expire_timers() calls detach_timer(timer, true)\nto clear timer-\u003eentry.pprev and marks it as not pending.\n\nIf reqsk_queue_unlink() checks timer_pending() just after expire_timers()\ncalls detach_timer(), TCP will miss del_timer_sync(); the reqsk timer will\ncontinue running and send multiple SYN+ACKs until it expires.\n\nThe reported UAF could happen if req-\u003esk is close()d earlier than the timer\nexpiration, which is 63s by default.\n\nThe scenario would be\n\n 1. inet_csk_complete_hashdance() calls inet_csk_reqsk_queue_drop(),\n but del_timer_sync() is missed\n\n 2. reqsk timer is executed and scheduled again\n\n 3. req-\u003esk is accept()ed and reqsk_put() decrements rsk_refcnt, but\n reqsk timer still has another one, and inet_csk_accept() does not\n clear req-\u003esk for non-TFO sockets\n\n 4. sk is close()d\n\n 5. reqsk timer is executed again, and BPF touches req-\u003esk\n\nLet\u0027s not use timer_pending() by passing the caller context to\n__inet_csk_reqsk_queue_drop().\n\nNote that reqsk timer is pinned, so the issue does not happen in most\nuse cases. [1]\n\n[0]\nBUG: KFENCE: use-after-free read in bpf_sk_storage_get_tracing+0x2e/0x1b0\n\nUse-after-free read at 0x00000000a891fb3a (in kfence-#1):\nbpf_sk_storage_get_tracing+0x2e/0x1b0\nbpf_prog_5ea3e95db6da0438_tcp_retransmit_synack+0x1d20/0x1dda\nbpf_trace_run2+0x4c/0xc0\ntcp_rtx_synack+0xf9/0x100\nreqsk_timer_handler+0xda/0x3d0\nrun_timer_softirq+0x292/0x8a0\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\nintel_idle_irq+0x5a/0xa0\ncpuidle_enter_state+0x94/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nkfence-#1: 0x00000000a72cc7b6-0x00000000d97616d9, size=2376, cache=TCPv6\n\nallocated by task 0 on cpu 9 at 260507.901592s:\nsk_prot_alloc+0x35/0x140\nsk_clone_lock+0x1f/0x3f0\ninet_csk_clone_lock+0x15/0x160\ntcp_create_openreq_child+0x1f/0x410\ntcp_v6_syn_recv_sock+0x1da/0x700\ntcp_check_req+0x1fb/0x510\ntcp_v6_rcv+0x98b/0x1420\nipv6_list_rcv+0x2258/0x26e0\nnapi_complete_done+0x5b1/0x2990\nmlx5e_napi_poll+0x2ae/0x8d0\nnet_rx_action+0x13e/0x590\nirq_exit_rcu+0xf5/0x320\ncommon_interrupt+0x80/0x90\nasm_common_interrupt+0x22/0x40\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb\n\nfreed by task 0 on cpu 9 at 260507.927527s:\nrcu_core_si+0x4ff/0xf10\nirq_exit_rcu+0xf5/0x320\nsysvec_apic_timer_interrupt+0x6d/0x80\nasm_sysvec_apic_timer_interrupt+0x16/0x20\ncpuidle_enter_state+0xfb/0x273\ncpu_startup_entry+0x15e/0x260\nstart_secondary+0x8a/0x90\nsecondary_startup_64_no_verify+0xfa/0xfb",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50154",
"url": "https://www.suse.com/security/cve/CVE-2024-50154"
},
{
"category": "external",
"summary": "SUSE Bug 1233070 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233070"
},
{
"category": "external",
"summary": "SUSE Bug 1233072 for CVE-2024-50154",
"url": "https://bugzilla.suse.com/1233072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: use cond_resched() in nsim_dev_trap_report_work()\n\nI am still seeing many syzbot reports hinting that syzbot\nmight fool nsim_dev_trap_report_work() with hundreds of ports [1]\n\nLets use cond_resched(), and system_unbound_wq\ninstead of implicit system_wq.\n\n[1]\nINFO: task syz-executor:20633 blocked for more than 143 seconds.\n Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\ntask:syz-executor state:D stack:25856 pid:20633 tgid:20633 ppid:1 flags:0x00004006\n...\nNMI backtrace for cpu 1\nCPU: 1 UID: 0 PID: 16760 Comm: kworker/1:0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\nWorkqueue: events nsim_dev_trap_report_work\n RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 kernel/kcov.c:210\nCode: 89 fb e8 23 00 00 00 48 8b 3d 04 fb 9c 0c 48 89 de 5b e9 c3 c7 5d 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 \u003cf3\u003e 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 c0 d7 03 00 65 8b 15 60 f0\nRSP: 0018:ffffc90000a187e8 EFLAGS: 00000246\nRAX: 0000000000000100 RBX: ffffc90000a188e0 RCX: ffff888027d3bc00\nRDX: ffff888027d3bc00 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffff88804a2e6000 R08: ffffffff8a4bc495 R09: ffffffff89da3577\nR10: 0000000000000004 R11: ffffffff8a4bc2b0 R12: dffffc0000000000\nR13: ffff88806573b503 R14: dffffc0000000000 R15: ffff8880663cca00\nFS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007fc90a747f98 CR3: 000000000e734000 CR4: 00000000003526f0\nDR0: 0000000000000000 DR1: 000000000000002b DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cNMI\u003e\n \u003c/NMI\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0x1bb/0x200 kernel/softirq.c:382\n spin_unlock_bh include/linux/spinlock.h:396 [inline]\n nsim_dev_trap_report drivers/net/netdevsim/dev.c:820 [inline]\n nsim_dev_trap_report_work+0x75d/0xaa0 drivers/net/netdevsim/dev.c:850\n process_one_work kernel/workqueue.c:3229 [inline]\n process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n kthread+0x2f0/0x390 kernel/kthread.c:389\n ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50155",
"url": "https://www.suse.com/security/cve/CVE-2024-50155"
},
{
"category": "external",
"summary": "SUSE Bug 1233035 for CVE-2024-50155",
"url": "https://bugzilla.suse.com/1233035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50155"
},
{
"cve": "CVE-2024-50156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm: Avoid NULL dereference in msm_disp_state_print_regs()\n\nIf the allocation in msm_disp_state_dump_regs() failed then\n`block-\u003estate` can be NULL. The msm_disp_state_print_regs() function\n_does_ have code to try to handle it with:\n\n if (*reg)\n dump_addr = *reg;\n\n...but since \"dump_addr\" is initialized to NULL the above is actually\na noop. The code then goes on to dereference `dump_addr`.\n\nMake the function print \"Registers not stored\" when it sees a NULL to\nsolve this. Since we\u0027re touching the code, fix\nmsm_disp_state_print_regs() not to pointlessly take a double-pointer\nand properly mark the pointer as `const`.\n\nPatchwork: https://patchwork.freedesktop.org/patch/619657/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50156",
"url": "https://www.suse.com/security/cve/CVE-2024-50156"
},
{
"category": "external",
"summary": "SUSE Bug 1233073 for CVE-2024-50156",
"url": "https://bugzilla.suse.com/1233073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50156"
},
{
"cve": "CVE-2024-50160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda/cs8409: Fix possible NULL dereference\n\nIf snd_hda_gen_add_kctl fails to allocate memory and returns NULL, then\nNULL pointer dereference will occur in the next line.\n\nSince dolphin_fixups function is a hda_fixup function which is not supposed\nto return any errors, add simple check before dereference, ignore the fail.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50160",
"url": "https://www.suse.com/security/cve/CVE-2024-50160"
},
{
"category": "external",
"summary": "SUSE Bug 1233074 for CVE-2024-50160",
"url": "https://bugzilla.suse.com/1233074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50160"
},
{
"cve": "CVE-2024-50167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: fix potential memory leak in be_xmit()\n\nThe be_xmit() returns NETDEV_TX_OK without freeing skb\nin case of be_xmit_enqueue() fails, add dev_kfree_skb_any() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50167",
"url": "https://www.suse.com/security/cve/CVE-2024-50167"
},
{
"category": "external",
"summary": "SUSE Bug 1233049 for CVE-2024-50167",
"url": "https://bugzilla.suse.com/1233049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50167"
},
{
"cve": "CVE-2024-50171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: systemport: fix potential memory leak in bcm_sysport_xmit()\n\nThe bcm_sysport_xmit() returns NETDEV_TX_OK without freeing skb\nin case of dma_map_single() fails, add dev_kfree_skb() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50171",
"url": "https://www.suse.com/security/cve/CVE-2024-50171"
},
{
"category": "external",
"summary": "SUSE Bug 1233057 for CVE-2024-50171",
"url": "https://bugzilla.suse.com/1233057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50171"
},
{
"cve": "CVE-2024-50179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: remove the incorrect Fw reference check when dirtying pages\n\nWhen doing the direct-io reads it will also try to mark pages dirty,\nbut for the read path it won\u0027t hold the Fw caps and there is case\nwill it get the Fw reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50179",
"url": "https://www.suse.com/security/cve/CVE-2024-50179"
},
{
"category": "external",
"summary": "SUSE Bug 1233123 for CVE-2024-50179",
"url": "https://bugzilla.suse.com/1233123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50179"
},
{
"cve": "CVE-2024-50180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: sisfb: Fix strbuf array overflow\n\nThe values of the variables xres and yres are placed in strbuf.\nThese variables are obtained from strbuf1.\nThe strbuf1 array contains digit characters\nand a space if the array contains non-digit characters.\nThen, when executing sprintf(strbuf, \"%ux%ux8\", xres, yres);\nmore than 16 bytes will be written to strbuf.\nIt is suggested to increase the size of the strbuf array to 24.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50180",
"url": "https://www.suse.com/security/cve/CVE-2024-50180"
},
{
"category": "external",
"summary": "SUSE Bug 1233125 for CVE-2024-50180",
"url": "https://bugzilla.suse.com/1233125"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50180"
},
{
"cve": "CVE-2024-50182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecretmem: disable memfd_secret() if arch cannot set direct map\n\nReturn -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This\nis the case for example on some arm64 configurations, where marking 4k\nPTEs in the direct map not present can only be done if the direct map is\nset up at 4k granularity in the first place (as ARM\u0027s break-before-make\nsemantics do not easily allow breaking apart large/gigantic pages).\n\nMore precisely, on arm64 systems with !can_set_direct_map(),\nset_direct_map_invalid_noflush() is a no-op, however it returns success\n(0) instead of an error. This means that memfd_secret will seemingly\n\"work\" (e.g. syscall succeeds, you can mmap the fd and fault in pages),\nbut it does not actually achieve its goal of removing its memory from the\ndirect map.\n\nNote that with this patch, memfd_secret() will start erroring on systems\nwhere can_set_direct_map() returns false (arm64 with\nCONFIG_RODATA_FULL_DEFAULT_ENABLED=n, CONFIG_DEBUG_PAGEALLOC=n and\nCONFIG_KFENCE=n), but that still seems better than the current silent\nfailure. Since CONFIG_RODATA_FULL_DEFAULT_ENABLED defaults to \u0027y\u0027, most\narm64 systems actually have a working memfd_secret() and aren\u0027t be\naffected.\n\nFrom going through the iterations of the original memfd_secret patch\nseries, it seems that disabling the syscall in these scenarios was the\nintended behavior [1] (preferred over having\nset_direct_map_invalid_noflush return an error as that would result in\nSIGBUSes at page-fault time), however the check for it got dropped between\nv16 [2] and v17 [3], when secretmem moved away from CMA allocations.\n\n[1]: https://lore.kernel.org/lkml/20201124164930.GK8537@kernel.org/\n[2]: https://lore.kernel.org/lkml/20210121122723.3446-11-rppt@kernel.org/#t\n[3]: https://lore.kernel.org/lkml/20201125092208.12544-10-rppt@kernel.org/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50182",
"url": "https://www.suse.com/security/cve/CVE-2024-50182"
},
{
"category": "external",
"summary": "SUSE Bug 1233129 for CVE-2024-50182",
"url": "https://bugzilla.suse.com/1233129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50182"
},
{
"cve": "CVE-2024-50183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance\n\nDeleting an NPIV instance requires all fabric ndlps to be released before\nan NPIV\u0027s resources can be torn down. Failure to release fabric ndlps\nbeforehand opens kref imbalance race conditions. Fix by forcing the DA_ID\nto complete synchronously with usage of wait_queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50183",
"url": "https://www.suse.com/security/cve/CVE-2024-50183"
},
{
"category": "external",
"summary": "SUSE Bug 1233130 for CVE-2024-50183",
"url": "https://bugzilla.suse.com/1233130"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50183"
},
{
"cve": "CVE-2024-50184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: Check device status before requesting flush\n\nIf a pmem device is in a bad status, the driver side could wait for\nhost ack forever in virtio_pmem_flush(), causing the system to hang.\n\nSo add a status check in the beginning of virtio_pmem_flush() to return\nearly if the device is not activated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50184",
"url": "https://www.suse.com/security/cve/CVE-2024-50184"
},
{
"category": "external",
"summary": "SUSE Bug 1233135 for CVE-2024-50184",
"url": "https://bugzilla.suse.com/1233135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50184"
},
{
"cve": "CVE-2024-50186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50186"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: explicitly clear the sk pointer, when pf-\u003ecreate fails\n\nWe have recently noticed the exact same KASAN splat as in commit\n6cd4a78d962b (\"net: do not leave a dangling sk pointer, when socket\ncreation fails\"). The problem is that commit did not fully address the\nproblem, as some pf-\u003ecreate implementations do not use sk_common_release\nin their error paths.\n\nFor example, we can use the same reproducer as in the above commit, but\nchanging ping to arping. arping uses AF_PACKET socket and if packet_create\nfails, it will just sk_free the allocated sk object.\n\nWhile we could chase all the pf-\u003ecreate implementations and make sure they\nNULL the freed sk object on error from the socket, we can\u0027t guarantee\nfuture protocols will not make the same mistake.\n\nSo it is easier to just explicitly NULL the sk pointer upon return from\npf-\u003ecreate in __sock_create. We do know that pf-\u003ecreate always releases the\nallocated sk object on error, so if the pointer is not NULL, it is\ndefinitely dangling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50186",
"url": "https://www.suse.com/security/cve/CVE-2024-50186"
},
{
"category": "external",
"summary": "SUSE Bug 1233110 for CVE-2024-50186",
"url": "https://bugzilla.suse.com/1233110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50186"
},
{
"cve": "CVE-2024-50187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: Stop the active perfmon before being destroyed\n\nUpon closing the file descriptor, the active performance monitor is not\nstopped. Although all perfmons are destroyed in `vc4_perfmon_close_file()`,\nthe active performance monitor\u0027s pointer (`vc4-\u003eactive_perfmon`) is still\nretained.\n\nIf we open a new file descriptor and submit a few jobs with performance\nmonitors, the driver will attempt to stop the active performance monitor\nusing the stale pointer in `vc4-\u003eactive_perfmon`. However, this pointer\nis no longer valid because the previous process has already terminated,\nand all performance monitors associated with it have been destroyed and\nfreed.\n\nTo fix this, when the active performance monitor belongs to a given\nprocess, explicitly stop it before destroying and freeing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50187",
"url": "https://www.suse.com/security/cve/CVE-2024-50187"
},
{
"category": "external",
"summary": "SUSE Bug 1233108 for CVE-2024-50187",
"url": "https://bugzilla.suse.com/1233108"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50187"
},
{
"cve": "CVE-2024-50188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: dp83869: fix memory corruption when enabling fiber\n\nWhen configuring the fiber port, the DP83869 PHY driver incorrectly\ncalls linkmode_set_bit() with a bit mask (1 \u003c\u003c 10) rather than a bit\nnumber (10). This corrupts some other memory location -- in case of\narm64 the priv pointer in the same structure.\n\nSince the advertising flags are updated from supported at the end of the\nfunction the incorrect line isn\u0027t needed at all and can be removed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50188",
"url": "https://www.suse.com/security/cve/CVE-2024-50188"
},
{
"category": "external",
"summary": "SUSE Bug 1233107 for CVE-2024-50188",
"url": "https://bugzilla.suse.com/1233107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50188"
},
{
"cve": "CVE-2024-50189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: Switch to device-managed dmam_alloc_coherent()\n\nUsing the device-managed version allows to simplify clean-up in probe()\nerror path.\n\nAdditionally, this device-managed ensures proper cleanup, which helps to\nresolve memory errors, page faults, btrfs going read-only, and btrfs\ndisk corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50189",
"url": "https://www.suse.com/security/cve/CVE-2024-50189"
},
{
"category": "external",
"summary": "SUSE Bug 1233105 for CVE-2024-50189",
"url": "https://bugzilla.suse.com/1233105"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50189"
},
{
"cve": "CVE-2024-50192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v4: Don\u0027t allow a VMOVP on a dying VPE\n\nKunkun Jiang reported that there is a small window of opportunity for\nuserspace to force a change of affinity for a VPE while the VPE has already\nbeen unmapped, but the corresponding doorbell interrupt still visible in\n/proc/irq/.\n\nPlug the race by checking the value of vmapp_count, which tracks whether\nthe VPE is mapped ot not, and returning an error in this case.\n\nThis involves making vmapp_count common to both GICv4.1 and its v4.0\nancestor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50192",
"url": "https://www.suse.com/security/cve/CVE-2024-50192"
},
{
"category": "external",
"summary": "SUSE Bug 1233106 for CVE-2024-50192",
"url": "https://bugzilla.suse.com/1233106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50192"
},
{
"cve": "CVE-2024-50194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: probes: Fix uprobes for big-endian kernels\n\nThe arm64 uprobes code is broken for big-endian kernels as it doesn\u0027t\nconvert the in-memory instruction encoding (which is always\nlittle-endian) into the kernel\u0027s native endianness before analyzing and\nsimulating instructions. This may result in a few distinct problems:\n\n* The kernel may may erroneously reject probing an instruction which can\n safely be probed.\n\n* The kernel may erroneously erroneously permit stepping an\n instruction out-of-line when that instruction cannot be stepped\n out-of-line safely.\n\n* The kernel may erroneously simulate instruction incorrectly dur to\n interpretting the byte-swapped encoding.\n\nThe endianness mismatch isn\u0027t caught by the compiler or sparse because:\n\n* The arch_uprobe::{insn,ixol} fields are encoded as arrays of u8, so\n the compiler and sparse have no idea these contain a little-endian\n 32-bit value. The core uprobes code populates these with a memcpy()\n which similarly does not handle endianness.\n\n* While the uprobe_opcode_t type is an alias for __le32, both\n arch_uprobe_analyze_insn() and arch_uprobe_skip_sstep() cast from u8[]\n to the similarly-named probe_opcode_t, which is an alias for u32.\n Hence there is no endianness conversion warning.\n\nFix this by changing the arch_uprobe::{insn,ixol} fields to __le32 and\nadding the appropriate __le32_to_cpu() conversions prior to consuming\nthe instruction encoding. The core uprobes copies these fields as opaque\nranges of bytes, and so is unaffected by this change.\n\nAt the same time, remove MAX_UINSN_BYTES and consistently use\nAARCH64_INSN_SIZE for clarity.\n\nTested with the following:\n\n| #include \u003cstdio.h\u003e\n| #include \u003cstdbool.h\u003e\n|\n| #define noinline __attribute__((noinline))\n|\n| static noinline void *adrp_self(void)\n| {\n| void *addr;\n|\n| asm volatile(\n| \" adrp %x0, adrp_self\\n\"\n| \" add %x0, %x0, :lo12:adrp_self\\n\"\n| : \"=r\" (addr));\n| }\n|\n|\n| int main(int argc, char *argv)\n| {\n| void *ptr = adrp_self();\n| bool equal = (ptr == adrp_self);\n|\n| printf(\"adrp_self =\u003e %p\\n\"\n| \"adrp_self() =\u003e %p\\n\"\n| \"%s\\n\",\n| adrp_self, ptr, equal ? \"EQUAL\" : \"NOT EQUAL\");\n|\n| return 0;\n| }\n\n.... where the adrp_self() function was compiled to:\n\n| 00000000004007e0 \u003cadrp_self\u003e:\n| 4007e0: 90000000 adrp x0, 400000 \u003c__ehdr_start\u003e\n| 4007e4: 911f8000 add x0, x0, #0x7e0\n| 4007e8: d65f03c0 ret\n\nBefore this patch, the ADRP is not recognized, and is assumed to be\nsteppable, resulting in corruption of the result:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0xffffffffff7e0\n| NOT EQUAL\n\nAfter this patch, the ADRP is correctly recognized and simulated:\n\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL\n| #\n| # echo \u0027p /root/adrp-self:0x007e0\u0027 \u003e /sys/kernel/tracing/uprobe_events\n| # echo 1 \u003e /sys/kernel/tracing/events/uprobes/enable\n| # ./adrp-self\n| adrp_self =\u003e 0x4007e0\n| adrp_self() =\u003e 0x4007e0\n| EQUAL",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50194",
"url": "https://www.suse.com/security/cve/CVE-2024-50194"
},
{
"category": "external",
"summary": "SUSE Bug 1233111 for CVE-2024-50194",
"url": "https://bugzilla.suse.com/1233111"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50194"
},
{
"cve": "CVE-2024-50195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-clock: Fix missing timespec64 check in pc_clock_settime()\n\nAs Andrew pointed out, it will make sense that the PTP core\nchecked timespec64 struct\u0027s tv_sec and tv_nsec range before calling\nptp-\u003einfo-\u003esettime64().\n\nAs the man manual of clock_settime() said, if tp.tv_sec is negative or\ntp.tv_nsec is outside the range [0..999,999,999], it should return EINVAL,\nwhich include dynamic clocks which handles PTP clock, and the condition is\nconsistent with timespec64_valid(). As Thomas suggested, timespec64_valid()\nonly check the timespec is valid, but not ensure that the time is\nin a valid range, so check it ahead using timespec64_valid_strict()\nin pc_clock_settime() and return -EINVAL if not valid.\n\nThere are some drivers that use tp-\u003etv_sec and tp-\u003etv_nsec directly to\nwrite registers without validity checks and assume that the higher layer\nhas checked it, which is dangerous and will benefit from this, such as\nhclge_ptp_settime(), igb_ptp_settime_i210(), _rcar_gen4_ptp_settime(),\nand some drivers can remove the checks of itself.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50195",
"url": "https://www.suse.com/security/cve/CVE-2024-50195"
},
{
"category": "external",
"summary": "SUSE Bug 1233103 for CVE-2024-50195",
"url": "https://bugzilla.suse.com/1233103"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50195"
},
{
"cve": "CVE-2024-50196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: ocelot: fix system hang on level based interrupts\n\nThe current implementation only calls chained_irq_enter() and\nchained_irq_exit() if it detects pending interrupts.\n\n```\nfor (i = 0; i \u003c info-\u003estride; i++) {\n\turegmap_read(info-\u003emap, id_reg + 4 * i, \u0026reg);\n\tif (!reg)\n\t\tcontinue;\n\n\tchained_irq_enter(parent_chip, desc);\n```\n\nHowever, in case of GPIO pin configured in level mode and the parent\ncontroller configured in edge mode, GPIO interrupt might be lowered by the\nhardware. In the result, if the interrupt is short enough, the parent\ninterrupt is still pending while the GPIO interrupt is cleared;\nchained_irq_enter() never gets called and the system hangs trying to\nservice the parent interrupt.\n\nMoving chained_irq_enter() and chained_irq_exit() outside the for loop\nensures that they are called even when GPIO interrupt is lowered by the\nhardware.\n\nThe similar code with chained_irq_enter() / chained_irq_exit() functions\nwrapping interrupt checking loop may be found in many other drivers:\n```\ngrep -r -A 10 chained_irq_enter drivers/pinctrl\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50196",
"url": "https://www.suse.com/security/cve/CVE-2024-50196"
},
{
"category": "external",
"summary": "SUSE Bug 1233113 for CVE-2024-50196",
"url": "https://bugzilla.suse.com/1233113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50196"
},
{
"cve": "CVE-2024-50198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: veml6030: fix IIO device retrieval from embedded device\n\nThe dev pointer that is received as an argument in the\nin_illuminance_period_available_show function references the device\nembedded in the IIO device, not in the i2c client.\n\ndev_to_iio_dev() must be used to accessthe right data. The current\nimplementation leads to a segmentation fault on every attempt to read\nthe attribute because indio_dev gets a NULL assignment.\n\nThis bug has been present since the first appearance of the driver,\napparently since the last version (V6) before getting applied. A\nconstant attribute was used until then, and the last modifications might\nhave not been tested again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50198",
"url": "https://www.suse.com/security/cve/CVE-2024-50198"
},
{
"category": "external",
"summary": "SUSE Bug 1233100 for CVE-2024-50198",
"url": "https://bugzilla.suse.com/1233100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50198"
},
{
"cve": "CVE-2024-50201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Fix encoder-\u003epossible_clones\n\nInclude the encoder itself in its possible_clones bitmask.\nIn the past nothing validated that drivers were populating\npossible_clones correctly, but that changed in commit\n74d2aacbe840 (\"drm: Validate encoder-\u003epossible_clones\").\nLooks like radeon never got the memo and is still not\nfollowing the rules 100% correctly.\n\nThis results in some warnings during driver initialization:\nBogus possible_clones: [ENCODER:46:TV-46] possible_clones=0x4 (full encoder mask=0x7)\nWARNING: CPU: 0 PID: 170 at drivers/gpu/drm/drm_mode_config.c:615 drm_mode_config_validate+0x113/0x39c\n...\n\n(cherry picked from commit 3b6e7d40649c0d75572039aff9d0911864c689db)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50201",
"url": "https://www.suse.com/security/cve/CVE-2024-50201"
},
{
"category": "external",
"summary": "SUSE Bug 1233104 for CVE-2024-50201",
"url": "https://bugzilla.suse.com/1233104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50201"
},
{
"cve": "CVE-2024-50205",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50205"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()\n\nThe step variable is initialized to zero. It is changed in the loop,\nbut if it\u0027s not changed it will remain zero. Add a variable check\nbefore the division.\n\nThe observed behavior was introduced by commit 826b5de90c0b\n(\"ALSA: firewire-lib: fix insufficient PCM rule for period/buffer size\"),\nand it is difficult to show that any of the interval parameters will\nsatisfy the snd_interval_test() condition with data from the\namdtp_rate_table[] table.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50205",
"url": "https://www.suse.com/security/cve/CVE-2024-50205"
},
{
"category": "external",
"summary": "SUSE Bug 1233293 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233293"
},
{
"category": "external",
"summary": "SUSE Bug 1233294 for CVE-2024-50205",
"url": "https://bugzilla.suse.com/1233294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50205"
},
{
"cve": "CVE-2024-50208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages\n\nAvoid memory corruption while setting up Level-2 PBL pages for the non MR\nresources when num_pages \u003e 256K.\n\nThere will be a single PDE page address (contiguous pages in the case of \u003e\nPAGE_SIZE), but, current logic assumes multiple pages, leading to invalid\nmemory access after 256K PBL entries in the PDE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50208",
"url": "https://www.suse.com/security/cve/CVE-2024-50208"
},
{
"category": "external",
"summary": "SUSE Bug 1233117 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233117"
},
{
"category": "external",
"summary": "SUSE Bug 1233118 for CVE-2024-50208",
"url": "https://bugzilla.suse.com/1233118"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50208"
},
{
"cve": "CVE-2024-50209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Add a check for memory allocation\n\n__alloc_pbl() can return error when memory allocation fails.\nDriver is not checking the status on one of the instances.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50209",
"url": "https://www.suse.com/security/cve/CVE-2024-50209"
},
{
"category": "external",
"summary": "SUSE Bug 1233114 for CVE-2024-50209",
"url": "https://bugzilla.suse.com/1233114"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50209"
},
{
"cve": "CVE-2024-50215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-auth: assign dh_key to NULL after kfree_sensitive\n\nctrl-\u003edh_key might be used across multiple calls to nvmet_setup_dhgroup()\nfor the same controller. So it\u0027s better to nullify it after release on\nerror path in order to avoid double free later in nvmet_destroy_auth().\n\nFound by Linux Verification Center (linuxtesting.org) with Svace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50215",
"url": "https://www.suse.com/security/cve/CVE-2024-50215"
},
{
"category": "external",
"summary": "SUSE Bug 1233189 for CVE-2024-50215",
"url": "https://bugzilla.suse.com/1233189"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50215"
},
{
"cve": "CVE-2024-50218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: pass u64 to ocfs2_truncate_inline maybe overflow\n\nSyzbot reported a kernel BUG in ocfs2_truncate_inline. There are two\nreasons for this: first, the parameter value passed is greater than\nocfs2_max_inline_data_with_xattr, second, the start and end parameters of\nocfs2_truncate_inline are \"unsigned int\".\n\nSo, we need to add a sanity check for byte_start and byte_len right before\nocfs2_truncate_inline() in ocfs2_remove_inode_range(), if they are greater\nthan ocfs2_max_inline_data_with_xattr return -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50218",
"url": "https://www.suse.com/security/cve/CVE-2024-50218"
},
{
"category": "external",
"summary": "SUSE Bug 1233191 for CVE-2024-50218",
"url": "https://bugzilla.suse.com/1233191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50218"
},
{
"cve": "CVE-2024-50229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix potential deadlock with newly created symlinks\n\nSyzbot reported that page_symlink(), called by nilfs_symlink(), triggers\nmemory reclamation involving the filesystem layer, which can result in\ncircular lock dependencies among the reader/writer semaphore\nnilfs-\u003ens_segctor_sem, s_writers percpu_rwsem (intwrite) and the\nfs_reclaim pseudo lock.\n\nThis is because after commit 21fc61c73c39 (\"don\u0027t put symlink bodies in\npagecache into highmem\"), the gfp flags of the page cache for symbolic\nlinks are overwritten to GFP_KERNEL via inode_nohighmem().\n\nThis is not a problem for symlinks read from the backing device, because\nthe __GFP_FS flag is dropped after inode_nohighmem() is called. However,\nwhen a new symlink is created with nilfs_symlink(), the gfp flags remain\noverwritten to GFP_KERNEL. Then, memory allocation called from\npage_symlink() etc. triggers memory reclamation including the FS layer,\nwhich may call nilfs_evict_inode() or nilfs_dirty_inode(). And these can\ncause a deadlock if they are called while nilfs-\u003ens_segctor_sem is held:\n\nFix this issue by dropping the __GFP_FS flag from the page cache GFP flags\nof newly created symlinks in the same way that nilfs_new_inode() and\n__nilfs_read_inode() do, as a workaround until we adopt nofs allocation\nscope consistently or improve the locking constraints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50229",
"url": "https://www.suse.com/security/cve/CVE-2024-50229"
},
{
"category": "external",
"summary": "SUSE Bug 1233205 for CVE-2024-50229",
"url": "https://bugzilla.suse.com/1233205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50229"
},
{
"cve": "CVE-2024-50230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix kernel bug due to missing clearing of checked flag\n\nSyzbot reported that in directory operations after nilfs2 detects\nfilesystem corruption and degrades to read-only,\n__block_write_begin_int(), which is called to prepare block writes, may\nfail the BUG_ON check for accesses exceeding the folio/page size,\ntriggering a kernel bug.\n\nThis was found to be because the \"checked\" flag of a page/folio was not\ncleared when it was discarded by nilfs2\u0027s own routine, which causes the\nsanity check of directory entries to be skipped when the directory\npage/folio is reloaded. So, fix that.\n\nThis was necessary when the use of nilfs2\u0027s own page discard routine was\napplied to more than just metadata files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50230",
"url": "https://www.suse.com/security/cve/CVE-2024-50230"
},
{
"category": "external",
"summary": "SUSE Bug 1233206 for CVE-2024-50230",
"url": "https://bugzilla.suse.com/1233206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50230"
},
{
"cve": "CVE-2024-50232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()\n\nIn the ad7124_write_raw() function, parameter val can potentially\nbe zero. This may lead to a division by zero when DIV_ROUND_CLOSEST()\nis called within ad7124_set_channel_odr(). The ad7124_write_raw()\nfunction is invoked through the sequence: iio_write_channel_raw() -\u003e\niio_write_channel_attribute() -\u003e iio_channel_write(), with no checks\nin place to ensure val is non-zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50232",
"url": "https://www.suse.com/security/cve/CVE-2024-50232"
},
{
"category": "external",
"summary": "SUSE Bug 1233209 for CVE-2024-50232",
"url": "https://bugzilla.suse.com/1233209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50232"
},
{
"cve": "CVE-2024-50233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()\n\nIn the ad9832_write_frequency() function, clk_get_rate() might return 0.\nThis can lead to a division by zero when calling ad9832_calc_freqreg().\nThe check if (fout \u003e (clk_get_rate(st-\u003emclk) / 2)) does not protect\nagainst the case when fout is 0. The ad9832_write_frequency() function\nis called from ad9832_write(), and fout is derived from a text buffer,\nwhich can contain any value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50233",
"url": "https://www.suse.com/security/cve/CVE-2024-50233"
},
{
"category": "external",
"summary": "SUSE Bug 1233210 for CVE-2024-50233",
"url": "https://bugzilla.suse.com/1233210"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50233"
},
{
"cve": "CVE-2024-50234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlegacy: Clear stale interrupts before resuming device\n\niwl4965 fails upon resume from hibernation on my laptop. The reason\nseems to be a stale interrupt which isn\u0027t being cleared out before\ninterrupts are enabled. We end up with a race beween the resume\ntrying to bring things back up, and the restart work (queued form\nthe interrupt handler) trying to bring things down. Eventually\nthe whole thing blows up.\n\nFix the problem by clearing out any stale interrupts before\ninterrupts get enabled during resume.\n\nHere\u0027s a debug log of the indicent:\n[ 12.042589] ieee80211 phy0: il_isr ISR inta 0x00000080, enabled 0xaa00008b, fh 0x00000000\n[ 12.042625] ieee80211 phy0: il4965_irq_tasklet inta 0x00000080, enabled 0x00000000, fh 0x00000000\n[ 12.042651] iwl4965 0000:10:00.0: RF_KILL bit toggled to enable radio.\n[ 12.042653] iwl4965 0000:10:00.0: On demand firmware reload\n[ 12.042690] ieee80211 phy0: il4965_irq_tasklet End inta 0x00000000, enabled 0xaa00008b, fh 0x00000000, flags 0x00000282\n[ 12.052207] ieee80211 phy0: il4965_mac_start enter\n[ 12.052212] ieee80211 phy0: il_prep_station Add STA to driver ID 31: ff:ff:ff:ff:ff:ff\n[ 12.052244] ieee80211 phy0: il4965_set_hw_ready hardware ready\n[ 12.052324] ieee80211 phy0: il_apm_init Init card\u0027s basic functions\n[ 12.052348] ieee80211 phy0: il_apm_init L1 Enabled; Disabling L0S\n[ 12.055727] ieee80211 phy0: il4965_load_bsm Begin load bsm\n[ 12.056140] ieee80211 phy0: il4965_verify_bsm Begin verify bsm\n[ 12.058642] ieee80211 phy0: il4965_verify_bsm BSM bootstrap uCode image OK\n[ 12.058721] ieee80211 phy0: il4965_load_bsm BSM write complete, poll 1 iterations\n[ 12.058734] ieee80211 phy0: __il4965_up iwl4965 is coming up\n[ 12.058737] ieee80211 phy0: il4965_mac_start Start UP work done.\n[ 12.058757] ieee80211 phy0: __il4965_down iwl4965 is going down\n[ 12.058761] ieee80211 phy0: il_scan_cancel_timeout Scan cancel timeout\n[ 12.058762] ieee80211 phy0: il_do_scan_abort Not performing scan to abort\n[ 12.058765] ieee80211 phy0: il_clear_ucode_stations Clearing ucode stations in driver\n[ 12.058767] ieee80211 phy0: il_clear_ucode_stations No active stations found to be cleared\n[ 12.058819] ieee80211 phy0: _il_apm_stop Stop card, put in low power state\n[ 12.058827] ieee80211 phy0: _il_apm_stop_master stop master\n[ 12.058864] ieee80211 phy0: il4965_clear_free_frames 0 frames on pre-allocated heap on clear.\n[ 12.058869] ieee80211 phy0: Hardware restart was requested\n[ 16.132299] iwl4965 0000:10:00.0: START_ALIVE timeout after 4000ms.\n[ 16.132303] ------------[ cut here ]------------\n[ 16.132304] Hardware became unavailable upon resume. This could be a software issue prior to suspend or a hardware issue.\n[ 16.132338] WARNING: CPU: 0 PID: 181 at net/mac80211/util.c:1826 ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132390] Modules linked in: ctr ccm sch_fq_codel xt_tcpudp xt_multiport xt_state iptable_filter iptable_nat nf_nat nf_conntrack nf_defrag_ipv4 ip_tables x_tables binfmt_misc joydev mousedev btusb btrtl btintel btbcm bluetooth ecdh_generic ecc iTCO_wdt i2c_dev iwl4965 iwlegacy coretemp snd_hda_codec_analog pcspkr psmouse mac80211 snd_hda_codec_generic libarc4 sdhci_pci cqhci sha256_generic sdhci libsha256 firewire_ohci snd_hda_intel snd_intel_dspcfg mmc_core snd_hda_codec snd_hwdep firewire_core led_class iosf_mbi snd_hda_core uhci_hcd lpc_ich crc_itu_t cfg80211 ehci_pci ehci_hcd snd_pcm usbcore mfd_core rfkill snd_timer snd usb_common soundcore video parport_pc parport intel_agp wmi intel_gtt backlight e1000e agpgart evdev\n[ 16.132456] CPU: 0 UID: 0 PID: 181 Comm: kworker/u8:6 Not tainted 6.11.0-cl+ #143\n[ 16.132460] Hardware name: Hewlett-Packard HP Compaq 6910p/30BE, BIOS 68MCU Ver. F.19 07/06/2010\n[ 16.132463] Workqueue: async async_run_entry_fn\n[ 16.132469] RIP: 0010:ieee80211_reconfig+0x8f/0x14b0 [mac80211]\n[ 16.132501] Code: da 02 00 0\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50234",
"url": "https://www.suse.com/security/cve/CVE-2024-50234"
},
{
"category": "external",
"summary": "SUSE Bug 1233211 for CVE-2024-50234",
"url": "https://bugzilla.suse.com/1233211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50234"
},
{
"cve": "CVE-2024-50236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: Fix memory leak in management tx\n\nIn the current logic, memory is allocated for storing the MSDU context\nduring management packet TX but this memory is not being freed during\nmanagement TX completion. Similar leaks are seen in the management TX\ncleanup logic.\n\nKmemleak reports this problem as below,\n\nunreferenced object 0xffffff80b64ed250 (size 16):\n comm \"kworker/u16:7\", pid 148, jiffies 4294687130 (age 714.199s)\n hex dump (first 16 bytes):\n 00 2b d8 d8 80 ff ff ff c4 74 e9 fd 07 00 00 00 .+.......t......\n backtrace:\n [\u003cffffffe6e7b245dc\u003e] __kmem_cache_alloc_node+0x1e4/0x2d8\n [\u003cffffffe6e7adde88\u003e] kmalloc_trace+0x48/0x110\n [\u003cffffffe6bbd765fc\u003e] ath10k_wmi_tlv_op_gen_mgmt_tx_send+0xd4/0x1d8 [ath10k_core]\n [\u003cffffffe6bbd3eed4\u003e] ath10k_mgmt_over_wmi_tx_work+0x134/0x298 [ath10k_core]\n [\u003cffffffe6e78d5974\u003e] process_scheduled_works+0x1ac/0x400\n [\u003cffffffe6e78d60b8\u003e] worker_thread+0x208/0x328\n [\u003cffffffe6e78dc890\u003e] kthread+0x100/0x1c0\n [\u003cffffffe6e78166c0\u003e] ret_from_fork+0x10/0x20\n\nFree the memory during completion and cleanup to fix the leak.\n\nProtect the mgmt_pending_tx idr_remove() operation in\nath10k_wmi_tlv_op_cleanup_mgmt_tx_send() using ar-\u003edata_lock similar to\nother instances.\n\nTested-on: WCN3990 hw1.0 SNOC WLAN.HL.2.0-01387-QCAHLSWMTPLZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50236",
"url": "https://www.suse.com/security/cve/CVE-2024-50236"
},
{
"category": "external",
"summary": "SUSE Bug 1233212 for CVE-2024-50236",
"url": "https://bugzilla.suse.com/1233212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50236"
},
{
"cve": "CVE-2024-50237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: do not pass a stopped vif to the driver in .get_txpower\n\nAvoid potentially crashing in the driver because of uninitialized private data",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50237",
"url": "https://www.suse.com/security/cve/CVE-2024-50237"
},
{
"category": "external",
"summary": "SUSE Bug 1233216 for CVE-2024-50237",
"url": "https://bugzilla.suse.com/1233216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50237"
},
{
"cve": "CVE-2024-50249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: CPPC: Make rmw_lock a raw_spin_lock\n\nThe following BUG was triggered:\n\n=============================\n[ BUG: Invalid wait context ]\n6.12.0-rc2-XXX #406 Not tainted\n-----------------------------\nkworker/1:1/62 is trying to lock:\nffffff8801593030 (\u0026cpc_ptr-\u003ermw_lock){+.+.}-{3:3}, at: cpc_write+0xcc/0x370\nother info that might help us debug this:\ncontext-{5:5}\n2 locks held by kworker/1:1/62:\n #0: ffffff897ef5ec98 (\u0026rq-\u003e__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x50\n #1: ffffff880154e238 (\u0026sg_policy-\u003eupdate_lock){....}-{2:2}, at: sugov_update_shared+0x3c/0x280\nstack backtrace:\nCPU: 1 UID: 0 PID: 62 Comm: kworker/1:1 Not tainted 6.12.0-rc2-g9654bd3e8806 #406\nWorkqueue: 0x0 (events)\nCall trace:\n dump_backtrace+0xa4/0x130\n show_stack+0x20/0x38\n dump_stack_lvl+0x90/0xd0\n dump_stack+0x18/0x28\n __lock_acquire+0x480/0x1ad8\n lock_acquire+0x114/0x310\n _raw_spin_lock+0x50/0x70\n cpc_write+0xcc/0x370\n cppc_set_perf+0xa0/0x3a8\n cppc_cpufreq_fast_switch+0x40/0xc0\n cpufreq_driver_fast_switch+0x4c/0x218\n sugov_update_shared+0x234/0x280\n update_load_avg+0x6ec/0x7b8\n dequeue_entities+0x108/0x830\n dequeue_task_fair+0x58/0x408\n __schedule+0x4f0/0x1070\n schedule+0x54/0x130\n worker_thread+0xc0/0x2e8\n kthread+0x130/0x148\n ret_from_fork+0x10/0x20\n\nsugov_update_shared() locks a raw_spinlock while cpc_write() locks a\nspinlock.\n\nTo have a correct wait-type order, update rmw_lock to a raw spinlock and\nensure that interrupts will be disabled on the CPU holding it.\n\n[ rjw: Changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50249",
"url": "https://www.suse.com/security/cve/CVE-2024-50249"
},
{
"category": "external",
"summary": "SUSE Bug 1233197 for CVE-2024-50249",
"url": "https://bugzilla.suse.com/1233197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50249"
},
{
"cve": "CVE-2024-50255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs\n\nFix __hci_cmd_sync_sk() to return not NULL for unknown opcodes.\n\n__hci_cmd_sync_sk() returns NULL if a command returns a status event.\nHowever, it also returns NULL where an opcode doesn\u0027t exist in the\nhci_cc table because hci_cmd_complete_evt() assumes status = skb-\u003edata[0]\nfor unknown opcodes.\nThis leads to null-ptr-deref in cmd_sync for HCI_OP_READ_LOCAL_CODECS as\nthere is no hci_cc for HCI_OP_READ_LOCAL_CODECS, which always assumes\nstatus = skb-\u003edata[0].\n\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 1 PID: 2000 Comm: kworker/u9:5 Not tainted 6.9.0-ga6bcb805883c-dirty #10\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci7 hci_power_on\nRIP: 0010:hci_read_supported_codecs+0xb9/0x870 net/bluetooth/hci_codec.c:138\nCode: 08 48 89 ef e8 b8 c1 8f fd 48 8b 75 00 e9 96 00 00 00 49 89 c6 48 ba 00 00 00 00 00 fc ff df 4c 8d 60 70 4c 89 e3 48 c1 eb 03 \u003c0f\u003e b6 04 13 84 c0 0f 85 82 06 00 00 41 83 3c 24 02 77 0a e8 bf 78\nRSP: 0018:ffff888120bafac8 EFLAGS: 00010212\nRAX: 0000000000000000 RBX: 000000000000000e RCX: ffff8881173f0040\nRDX: dffffc0000000000 RSI: ffffffffa58496c0 RDI: ffff88810b9ad1e4\nRBP: ffff88810b9ac000 R08: ffffffffa77882a7 R09: 1ffffffff4ef1054\nR10: dffffc0000000000 R11: fffffbfff4ef1055 R12: 0000000000000070\nR13: 0000000000000000 R14: 0000000000000000 R15: ffff88810b9ac000\nFS: 0000000000000000(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f6ddaa3439e CR3: 0000000139764003 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n hci_read_local_codecs_sync net/bluetooth/hci_sync.c:4546 [inline]\n hci_init_stage_sync net/bluetooth/hci_sync.c:3441 [inline]\n hci_init4_sync net/bluetooth/hci_sync.c:4706 [inline]\n hci_init_sync net/bluetooth/hci_sync.c:4742 [inline]\n hci_dev_init_sync net/bluetooth/hci_sync.c:4912 [inline]\n hci_dev_open_sync+0x19a9/0x2d30 net/bluetooth/hci_sync.c:4994\n hci_dev_do_open net/bluetooth/hci_core.c:483 [inline]\n hci_power_on+0x11e/0x560 net/bluetooth/hci_core.c:1015\n process_one_work kernel/workqueue.c:3267 [inline]\n process_scheduled_works+0x8ef/0x14f0 kernel/workqueue.c:3348\n worker_thread+0x91f/0xe50 kernel/workqueue.c:3429\n kthread+0x2cb/0x360 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50255",
"url": "https://www.suse.com/security/cve/CVE-2024-50255"
},
{
"category": "external",
"summary": "SUSE Bug 1233238 for CVE-2024-50255",
"url": "https://bugzilla.suse.com/1233238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50255"
},
{
"cve": "CVE-2024-50259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()\n\nThis was found by a static analyzer.\nWe should not forget the trailing zero after copy_from_user()\nif we will further do some string operations, sscanf() in this\ncase. Adding a trailing zero will ensure that the function\nperforms properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50259",
"url": "https://www.suse.com/security/cve/CVE-2024-50259"
},
{
"category": "external",
"summary": "SUSE Bug 1233214 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233214"
},
{
"category": "external",
"summary": "SUSE Bug 1233215 for CVE-2024-50259",
"url": "https://bugzilla.suse.com/1233215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50259"
},
{
"cve": "CVE-2024-50261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacsec: Fix use-after-free while sending the offloading packet\n\nKASAN reports the following UAF. The metadata_dst, which is used to\nstore the SCI value for macsec offload, is already freed by\nmetadata_dst_free() in macsec_free_netdev(), while driver still use it\nfor sending the packet.\n\nTo fix this issue, dst_release() is used instead to release\nmetadata_dst. So it is not freed instantly in macsec_free_netdev() if\nstill referenced by skb.\n\n BUG: KASAN: slab-use-after-free in mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n Read of size 2 at addr ffff88813e42e038 by task kworker/7:2/714\n [...]\n Workqueue: mld mld_ifc_work\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x60\n print_report+0xc1/0x600\n kasan_report+0xab/0xe0\n mlx5e_xmit+0x1e8f/0x4190 [mlx5_core]\n dev_hard_start_xmit+0x120/0x530\n sch_direct_xmit+0x149/0x11e0\n __qdisc_run+0x3ad/0x1730\n __dev_queue_xmit+0x1196/0x2ed0\n vlan_dev_hard_start_xmit+0x32e/0x510 [8021q]\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n macsec_start_xmit+0x13e9/0x2340\n dev_hard_start_xmit+0x120/0x530\n __dev_queue_xmit+0x14a7/0x2ed0\n ip6_finish_output2+0x923/0x1a70\n ip6_finish_output+0x2d7/0x970\n ip6_output+0x1ce/0x3a0\n NF_HOOK.constprop.0+0x15f/0x190\n mld_sendpack+0x59a/0xbd0\n mld_ifc_work+0x48a/0xa80\n process_one_work+0x5aa/0xe50\n worker_thread+0x79c/0x1290\n kthread+0x28f/0x350\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\n\n Allocated by task 3922:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n __kasan_kmalloc+0x77/0x90\n __kmalloc_noprof+0x188/0x400\n metadata_dst_alloc+0x1f/0x4e0\n macsec_newlink+0x914/0x1410\n __rtnl_newlink+0xe08/0x15b0\n rtnl_newlink+0x5f/0x90\n rtnetlink_rcv_msg+0x667/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 4011:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n poison_slab_object+0x10c/0x190\n __kasan_slab_free+0x11/0x30\n kfree+0xe0/0x290\n macsec_free_netdev+0x3f/0x140\n netdev_run_todo+0x450/0xc70\n rtnetlink_rcv_msg+0x66f/0xa80\n netlink_rcv_skb+0x12c/0x360\n netlink_unicast+0x551/0x770\n netlink_sendmsg+0x72d/0xbd0\n __sock_sendmsg+0xc5/0x190\n ____sys_sendmsg+0x52e/0x6a0\n ___sys_sendmsg+0xeb/0x170\n __sys_sendmsg+0xb5/0x140\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50261",
"url": "https://www.suse.com/security/cve/CVE-2024-50261"
},
{
"category": "external",
"summary": "SUSE Bug 1233253 for CVE-2024-50261",
"url": "https://bugzilla.suse.com/1233253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50261"
},
{
"cve": "CVE-2024-50264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: Initialization of the dangling pointer occurring in vsk-\u003etrans\n\nDuring loopback communication, a dangling pointer can be created in\nvsk-\u003etrans, potentially leading to a Use-After-Free condition. This\nissue is resolved by initializing vsk-\u003etrans to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50264",
"url": "https://www.suse.com/security/cve/CVE-2024-50264"
},
{
"category": "external",
"summary": "SUSE Bug 1233453 for CVE-2024-50264",
"url": "https://bugzilla.suse.com/1233453"
},
{
"category": "external",
"summary": "SUSE Bug 1233712 for CVE-2024-50264",
"url": "https://bugzilla.suse.com/1233712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50264"
},
{
"cve": "CVE-2024-50265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove()\n\nSyzkaller is able to provoke null-ptr-dereference in ocfs2_xa_remove():\n\n[ 57.319872] (a.out,1161,7):ocfs2_xa_remove:2028 ERROR: status = -12\n[ 57.320420] (a.out,1161,7):ocfs2_xa_cleanup_value_truncate:1999 ERROR: Partial truncate while removing xattr overlay.upper. Leaking 1 clusters and removing the entry\n[ 57.321727] BUG: kernel NULL pointer dereference, address: 0000000000000004\n[...]\n[ 57.325727] RIP: 0010:ocfs2_xa_block_wipe_namevalue+0x2a/0xc0\n[...]\n[ 57.331328] Call Trace:\n[ 57.331477] \u003cTASK\u003e\n[...]\n[ 57.333511] ? do_user_addr_fault+0x3e5/0x740\n[ 57.333778] ? exc_page_fault+0x70/0x170\n[ 57.334016] ? asm_exc_page_fault+0x2b/0x30\n[ 57.334263] ? __pfx_ocfs2_xa_block_wipe_namevalue+0x10/0x10\n[ 57.334596] ? ocfs2_xa_block_wipe_namevalue+0x2a/0xc0\n[ 57.334913] ocfs2_xa_remove_entry+0x23/0xc0\n[ 57.335164] ocfs2_xa_set+0x704/0xcf0\n[ 57.335381] ? _raw_spin_unlock+0x1a/0x40\n[ 57.335620] ? ocfs2_inode_cache_unlock+0x16/0x20\n[ 57.335915] ? trace_preempt_on+0x1e/0x70\n[ 57.336153] ? start_this_handle+0x16c/0x500\n[ 57.336410] ? preempt_count_sub+0x50/0x80\n[ 57.336656] ? _raw_read_unlock+0x20/0x40\n[ 57.336906] ? start_this_handle+0x16c/0x500\n[ 57.337162] ocfs2_xattr_block_set+0xa6/0x1e0\n[ 57.337424] __ocfs2_xattr_set_handle+0x1fd/0x5d0\n[ 57.337706] ? ocfs2_start_trans+0x13d/0x290\n[ 57.337971] ocfs2_xattr_set+0xb13/0xfb0\n[ 57.338207] ? dput+0x46/0x1c0\n[ 57.338393] ocfs2_xattr_trusted_set+0x28/0x30\n[ 57.338665] ? ocfs2_xattr_trusted_set+0x28/0x30\n[ 57.338948] __vfs_removexattr+0x92/0xc0\n[ 57.339182] __vfs_removexattr_locked+0xd5/0x190\n[ 57.339456] ? preempt_count_sub+0x50/0x80\n[ 57.339705] vfs_removexattr+0x5f/0x100\n[...]\n\nReproducer uses faultinject facility to fail ocfs2_xa_remove() -\u003e\nocfs2_xa_value_truncate() with -ENOMEM.\n\nIn this case the comment mentions that we can return 0 if\nocfs2_xa_cleanup_value_truncate() is going to wipe the entry\nanyway. But the following \u0027rc\u0027 check is wrong and execution flow do\n\u0027ocfs2_xa_remove_entry(loc);\u0027 twice:\n* 1st: in ocfs2_xa_cleanup_value_truncate();\n* 2nd: returning back to ocfs2_xa_remove() instead of going to \u0027out\u0027.\n\nFix this by skipping the 2nd removal of the same entry and making\nsyzkaller repro happy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50265",
"url": "https://www.suse.com/security/cve/CVE-2024-50265"
},
{
"category": "external",
"summary": "SUSE Bug 1233454 for CVE-2024-50265",
"url": "https://bugzilla.suse.com/1233454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50265"
},
{
"cve": "CVE-2024-50267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: serial: io_edgeport: fix use after free in debug printk\n\nThe \"dev_dbg(\u0026urb-\u003edev-\u003edev, ...\" which happens after usb_free_urb(urb)\nis a use after free of the \"urb\" pointer. Store the \"dev\" pointer at the\nstart of the function to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50267",
"url": "https://www.suse.com/security/cve/CVE-2024-50267"
},
{
"category": "external",
"summary": "SUSE Bug 1233456 for CVE-2024-50267",
"url": "https://bugzilla.suse.com/1233456"
},
{
"category": "external",
"summary": "SUSE Bug 1233711 for CVE-2024-50267",
"url": "https://bugzilla.suse.com/1233711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50267"
},
{
"cve": "CVE-2024-50268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()\n\nThe \"*cmd\" variable can be controlled by the user via debugfs. That means\n\"new_cam\" can be as high as 255 while the size of the uc-\u003eupdated[] array\nis UCSI_MAX_ALTMODES (30).\n\nThe call tree is:\nucsi_cmd() // val comes from simple_attr_write_xsigned()\n-\u003e ucsi_send_command()\n -\u003e ucsi_send_command_common()\n -\u003e ucsi_run_command() // calls ucsi-\u003eops-\u003esync_control()\n -\u003e ucsi_ccg_sync_control()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50268",
"url": "https://www.suse.com/security/cve/CVE-2024-50268"
},
{
"category": "external",
"summary": "SUSE Bug 1233457 for CVE-2024-50268",
"url": "https://bugzilla.suse.com/1233457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50268"
},
{
"cve": "CVE-2024-50269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: musb: sunxi: Fix accessing an released usb phy\n\nCommit 6ed05c68cbca (\"usb: musb: sunxi: Explicitly release USB PHY on\nexit\") will cause that usb phy @glue-\u003exceiv is accessed after released.\n\n1) register platform driver @sunxi_musb_driver\n// get the usb phy @glue-\u003exceiv\nsunxi_musb_probe() -\u003e devm_usb_get_phy().\n\n2) register and unregister platform driver @musb_driver\nmusb_probe() -\u003e sunxi_musb_init()\nuse the phy here\n//the phy is released here\nmusb_remove() -\u003e sunxi_musb_exit() -\u003e devm_usb_put_phy()\n\n3) register @musb_driver again\nmusb_probe() -\u003e sunxi_musb_init()\nuse the phy here but the phy has been released at 2).\n...\n\nFixed by reverting the commit, namely, removing devm_usb_put_phy()\nfrom sunxi_musb_exit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50269",
"url": "https://www.suse.com/security/cve/CVE-2024-50269"
},
{
"category": "external",
"summary": "SUSE Bug 1233458 for CVE-2024-50269",
"url": "https://bugzilla.suse.com/1233458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50269"
},
{
"cve": "CVE-2024-50271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsignal: restore the override_rlimit logic\n\nPrior to commit d64696905554 (\"Reimplement RLIMIT_SIGPENDING on top of\nucounts\") UCOUNT_RLIMIT_SIGPENDING rlimit was not enforced for a class of\nsignals. However now it\u0027s enforced unconditionally, even if\noverride_rlimit is set. This behavior change caused production issues. \n\nFor example, if the limit is reached and a process receives a SIGSEGV\nsignal, sigqueue_alloc fails to allocate the necessary resources for the\nsignal delivery, preventing the signal from being delivered with siginfo. \nThis prevents the process from correctly identifying the fault address and\nhandling the error. From the user-space perspective, applications are\nunaware that the limit has been reached and that the siginfo is\neffectively \u0027corrupted\u0027. This can lead to unpredictable behavior and\ncrashes, as we observed with java applications.\n\nFix this by passing override_rlimit into inc_rlimit_get_ucounts() and skip\nthe comparison to max there if override_rlimit is set. This effectively\nrestores the old behavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50271",
"url": "https://www.suse.com/security/cve/CVE-2024-50271"
},
{
"category": "external",
"summary": "SUSE Bug 1233460 for CVE-2024-50271",
"url": "https://bugzilla.suse.com/1233460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50271"
},
{
"cve": "CVE-2024-50273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: reinitialize delayed ref list after deleting it from the list\n\nAt insert_delayed_ref() if we need to update the action of an existing\nref to BTRFS_DROP_DELAYED_REF, we delete the ref from its ref head\u0027s\nref_add_list using list_del(), which leaves the ref\u0027s add_list member\nnot reinitialized, as list_del() sets the next and prev members of the\nlist to LIST_POISON1 and LIST_POISON2, respectively.\n\nIf later we end up calling drop_delayed_ref() against the ref, which can\nhappen during merging or when destroying delayed refs due to a transaction\nabort, we can trigger a crash since at drop_delayed_ref() we call\nlist_empty() against the ref\u0027s add_list, which returns false since\nthe list was not reinitialized after the list_del() and as a consequence\nwe call list_del() again at drop_delayed_ref(). This results in an\ninvalid list access since the next and prev members are set to poison\npointers, resulting in a splat if CONFIG_LIST_HARDENED and\nCONFIG_DEBUG_LIST are set or invalid poison pointer dereferences\notherwise.\n\nSo fix this by deleting from the list with list_del_init() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50273",
"url": "https://www.suse.com/security/cve/CVE-2024-50273"
},
{
"category": "external",
"summary": "SUSE Bug 1233462 for CVE-2024-50273",
"url": "https://bugzilla.suse.com/1233462"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50273"
},
{
"cve": "CVE-2024-50274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: avoid vport access in idpf_get_link_ksettings\n\nWhen the device control plane is removed or the platform\nrunning device control plane is rebooted, a reset is detected\non the driver. On driver reset, it releases the resources and\nwaits for the reset to complete. If the reset fails, it takes\nthe error path and releases the vport lock. At this time if the\nmonitoring tools tries to access link settings, it call traces\nfor accessing released vport pointer.\n\nTo avoid it, move link_speed_mbps to netdev_priv structure\nwhich removes the dependency on vport pointer and the vport lock\nin idpf_get_link_ksettings. Also use netif_carrier_ok()\nto check the link status and adjust the offsetof to use link_up\ninstead of link_speed_mbps.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50274",
"url": "https://www.suse.com/security/cve/CVE-2024-50274"
},
{
"category": "external",
"summary": "SUSE Bug 1233463 for CVE-2024-50274",
"url": "https://bugzilla.suse.com/1233463"
},
{
"category": "external",
"summary": "SUSE Bug 1235104 for CVE-2024-50274",
"url": "https://bugzilla.suse.com/1235104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50274"
},
{
"cve": "CVE-2024-50279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm cache: fix out-of-bounds access to the dirty bitset when resizing\n\ndm-cache checks the dirty bits of the cache blocks to be dropped when\nshrinking the fast device, but an index bug in bitset iteration causes\nout-of-bounds access.\n\nReproduce steps:\n\n1. create a cache device of 1024 cache blocks (128 bytes dirty bitset)\n\ndmsetup create cmeta --table \"0 8192 linear /dev/sdc 0\"\ndmsetup create cdata --table \"0 131072 linear /dev/sdc 8192\"\ndmsetup create corig --table \"0 524288 linear /dev/sdc 262144\"\ndd if=/dev/zero of=/dev/mapper/cmeta bs=4k count=1 oflag=direct\ndmsetup create cache --table \"0 524288 cache /dev/mapper/cmeta \\\n/dev/mapper/cdata /dev/mapper/corig 128 2 metadata2 writethrough smq 0\"\n\n2. shrink the fast device to 512 cache blocks, triggering out-of-bounds\n access to the dirty bitset (offset 0x80)\n\ndmsetup suspend cache\ndmsetup reload cdata --table \"0 65536 linear /dev/sdc 8192\"\ndmsetup resume cdata\ndmsetup resume cache\n\nKASAN reports:\n\n BUG: KASAN: vmalloc-out-of-bounds in cache_preresume+0x269/0x7b0\n Read of size 8 at addr ffffc900000f3080 by task dmsetup/131\n\n (...snip...)\n The buggy address belongs to the virtual mapping at\n [ffffc900000f3000, ffffc900000f5000) created by:\n cache_ctr+0x176a/0x35f0\n\n (...snip...)\n Memory state around the buggy address:\n ffffc900000f2f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effffc900000f3080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ^\n ffffc900000f3100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n ffffc900000f3180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8\n\nFix by making the index post-incremented.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50279",
"url": "https://www.suse.com/security/cve/CVE-2024-50279"
},
{
"category": "external",
"summary": "SUSE Bug 1233468 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233468"
},
{
"category": "external",
"summary": "SUSE Bug 1233708 for CVE-2024-50279",
"url": "https://bugzilla.suse.com/1233708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50279"
},
{
"cve": "CVE-2024-50282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()\n\nAvoid a possible buffer overflow if size is larger than 4K.\n\n(cherry picked from commit f5d873f5825b40d886d03bd2aede91d4cf002434)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50282",
"url": "https://www.suse.com/security/cve/CVE-2024-50282"
},
{
"category": "external",
"summary": "SUSE Bug 1233471 for CVE-2024-50282",
"url": "https://bugzilla.suse.com/1233471"
},
{
"category": "external",
"summary": "SUSE Bug 1233707 for CVE-2024-50282",
"url": "https://bugzilla.suse.com/1233707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50282"
},
{
"cve": "CVE-2024-50287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-tpg: prevent the risk of a division by zero\n\nAs reported by Coverity, the logic at tpg_precalculate_line()\nblindly rescales the buffer even when scaled_witdh is equal to\nzero. If this ever happens, this will cause a division by zero.\n\nInstead, add a WARN_ON_ONCE() to trigger such cases and return\nwithout doing any precalculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50287",
"url": "https://www.suse.com/security/cve/CVE-2024-50287"
},
{
"category": "external",
"summary": "SUSE Bug 1233476 for CVE-2024-50287",
"url": "https://bugzilla.suse.com/1233476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50287"
},
{
"cve": "CVE-2024-50289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: av7110: fix a spectre vulnerability\n\nAs warned by smatch:\n\tdrivers/staging/media/av7110/av7110_ca.c:270 dvb_ca_ioctl() warn: potential spectre issue \u0027av7110-\u003eci_slot\u0027 [w] (local cap)\n\nThere is a spectre-related vulnerability at the code. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50289",
"url": "https://www.suse.com/security/cve/CVE-2024-50289"
},
{
"category": "external",
"summary": "SUSE Bug 1233478 for CVE-2024-50289",
"url": "https://bugzilla.suse.com/1233478"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50289"
},
{
"cve": "CVE-2024-50290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: cx24116: prevent overflows on SNR calculus\n\nas reported by Coverity, if reading SNR registers fail, a negative\nnumber will be returned, causing an underflow when reading SNR\nregisters.\n\nPrevent that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50290",
"url": "https://www.suse.com/security/cve/CVE-2024-50290"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1233479 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1233479"
},
{
"category": "external",
"summary": "SUSE Bug 1233681 for CVE-2024-50290",
"url": "https://bugzilla.suse.com/1233681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50290"
},
{
"cve": "CVE-2024-50292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove\n\nIn case of error when requesting ctrl_chan DMA channel, ctrl_chan is not\nnull. So the release of the dma channel leads to the following issue:\n[ 4.879000] st,stm32-spdifrx 500d0000.audio-controller:\ndma_request_slave_channel error -19\n[ 4.888975] Unable to handle kernel NULL pointer dereference\nat virtual address 000000000000003d\n[...]\n[ 5.096577] Call trace:\n[ 5.099099] dma_release_channel+0x24/0x100\n[ 5.103235] stm32_spdifrx_remove+0x24/0x60 [snd_soc_stm32_spdifrx]\n[ 5.109494] stm32_spdifrx_probe+0x320/0x4c4 [snd_soc_stm32_spdifrx]\n\nTo avoid this issue, release channel only if the pointer is valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50292",
"url": "https://www.suse.com/security/cve/CVE-2024-50292"
},
{
"category": "external",
"summary": "SUSE Bug 1233481 for CVE-2024-50292",
"url": "https://bugzilla.suse.com/1233481"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50292"
},
{
"cve": "CVE-2024-50295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50295"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: arc: fix the device for dma_map_single/dma_unmap_single\n\nThe ndev-\u003edev and pdev-\u003edev aren\u0027t the same device, use ndev-\u003edev.parent\nwhich has dma_mask, ndev-\u003edev.parent is just pdev-\u003edev.\nOr it would cause the following issue:\n\n[ 39.933526] ------------[ cut here ]------------\n[ 39.938414] WARNING: CPU: 1 PID: 501 at kernel/dma/mapping.c:149 dma_map_page_attrs+0x90/0x1f8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50295",
"url": "https://www.suse.com/security/cve/CVE-2024-50295"
},
{
"category": "external",
"summary": "SUSE Bug 1233484 for CVE-2024-50295",
"url": "https://bugzilla.suse.com/1233484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50295"
},
{
"cve": "CVE-2024-50298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: allocate vf_state during PF probes\n\nIn the previous implementation, vf_state is allocated memory only when VF\nis enabled. However, net_device_ops::ndo_set_vf_mac() may be called before\nVF is enabled to configure the MAC address of VF. If this is the case,\nenetc_pf_set_vf_mac() will access vf_state, resulting in access to a null\npointer. The simplified error log is as follows.\n\nroot@ls1028ardb:~# ip link set eno0 vf 1 mac 00:0c:e7:66:77:89\n[ 173.543315] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000004\n[ 173.637254] pc : enetc_pf_set_vf_mac+0x3c/0x80 Message from sy\n[ 173.641973] lr : do_setlink+0x4a8/0xec8\n[ 173.732292] Call trace:\n[ 173.734740] enetc_pf_set_vf_mac+0x3c/0x80\n[ 173.738847] __rtnl_newlink+0x530/0x89c\n[ 173.742692] rtnl_newlink+0x50/0x7c\n[ 173.746189] rtnetlink_rcv_msg+0x128/0x390\n[ 173.750298] netlink_rcv_skb+0x60/0x130\n[ 173.754145] rtnetlink_rcv+0x18/0x24\n[ 173.757731] netlink_unicast+0x318/0x380\n[ 173.761665] netlink_sendmsg+0x17c/0x3c8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50298",
"url": "https://www.suse.com/security/cve/CVE-2024-50298"
},
{
"category": "external",
"summary": "SUSE Bug 1233487 for CVE-2024-50298",
"url": "https://bugzilla.suse.com/1233487"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-50298"
},
{
"cve": "CVE-2024-50301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsecurity/keys: fix slab-out-of-bounds in key_task_permission\n\nKASAN reports an out of bounds read:\nBUG: KASAN: slab-out-of-bounds in __kuid_val include/linux/uidgid.h:36\nBUG: KASAN: slab-out-of-bounds in uid_eq include/linux/uidgid.h:63 [inline]\nBUG: KASAN: slab-out-of-bounds in key_task_permission+0x394/0x410\nsecurity/keys/permission.c:54\nRead of size 4 at addr ffff88813c3ab618 by task stress-ng/4362\n\nCPU: 2 PID: 4362 Comm: stress-ng Not tainted 5.10.0-14930-gafbffd6c3ede #15\nCall Trace:\n __dump_stack lib/dump_stack.c:82 [inline]\n dump_stack+0x107/0x167 lib/dump_stack.c:123\n print_address_description.constprop.0+0x19/0x170 mm/kasan/report.c:400\n __kasan_report.cold+0x6c/0x84 mm/kasan/report.c:560\n kasan_report+0x3a/0x50 mm/kasan/report.c:585\n __kuid_val include/linux/uidgid.h:36 [inline]\n uid_eq include/linux/uidgid.h:63 [inline]\n key_task_permission+0x394/0x410 security/keys/permission.c:54\n search_nested_keyrings+0x90e/0xe90 security/keys/keyring.c:793\n\nThis issue was also reported by syzbot.\n\nIt can be reproduced by following these steps(more details [1]):\n1. Obtain more than 32 inputs that have similar hashes, which ends with the\n pattern \u00270xxxxxxxe6\u0027.\n2. Reboot and add the keys obtained in step 1.\n\nThe reproducer demonstrates how this issue happened:\n1. In the search_nested_keyrings function, when it iterates through the\n slots in a node(below tag ascend_to_node), if the slot pointer is meta\n and node-\u003eback_pointer != NULL(it means a root), it will proceed to\n descend_to_node. However, there is an exception. If node is the root,\n and one of the slots points to a shortcut, it will be treated as a\n keyring.\n2. Whether the ptr is keyring decided by keyring_ptr_is_keyring function.\n However, KEYRING_PTR_SUBTYPE is 0x2UL, the same as\n ASSOC_ARRAY_PTR_SUBTYPE_MASK.\n3. When 32 keys with the similar hashes are added to the tree, the ROOT\n has keys with hashes that are not similar (e.g. slot 0) and it splits\n NODE A without using a shortcut. When NODE A is filled with keys that\n all hashes are xxe6, the keys are similar, NODE A will split with a\n shortcut. Finally, it forms the tree as shown below, where slot 6 points\n to a shortcut.\n\n NODE A\n +------\u003e+---+\n ROOT | | 0 | xxe6\n +---+ | +---+\n xxxx | 0 | shortcut : : xxe6\n +---+ | +---+\n xxe6 : : | | | xxe6\n +---+ | +---+\n | 6 |---+ : : xxe6\n +---+ +---+\n xxe6 : : | f | xxe6\n +---+ +---+\n xxe6 | f |\n +---+\n\n4. As mentioned above, If a slot(slot 6) of the root points to a shortcut,\n it may be mistakenly transferred to a key*, leading to a read\n out-of-bounds read.\n\nTo fix this issue, one should jump to descend_to_node if the ptr is a\nshortcut, regardless of whether the node is root or not.\n\n[1] https://lore.kernel.org/linux-kernel/1cfa878e-8c7b-4570-8606-21daf5e13ce7@huaweicloud.com/\n\n[jarkko: tweaked the commit message a bit to have an appropriate closes\n tag.]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50301",
"url": "https://www.suse.com/security/cve/CVE-2024-50301"
},
{
"category": "external",
"summary": "SUSE Bug 1233490 for CVE-2024-50301",
"url": "https://bugzilla.suse.com/1233490"
},
{
"category": "external",
"summary": "SUSE Bug 1233680 for CVE-2024-50301",
"url": "https://bugzilla.suse.com/1233680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50301"
},
{
"cve": "CVE-2024-50302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: core: zero-initialize the report buffer\n\nSince the report buffer is used by all kinds of drivers in various ways, let\u0027s\nzero-initialize it during allocation to make sure that it can\u0027t be ever used\nto leak kernel memory via specially-crafted report.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50302",
"url": "https://www.suse.com/security/cve/CVE-2024-50302"
},
{
"category": "external",
"summary": "SUSE Bug 1233491 for CVE-2024-50302",
"url": "https://bugzilla.suse.com/1233491"
},
{
"category": "external",
"summary": "SUSE Bug 1233679 for CVE-2024-50302",
"url": "https://bugzilla.suse.com/1233679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-50302"
},
{
"cve": "CVE-2024-53052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53052"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/rw: fix missing NOWAIT check for O_DIRECT start write\n\nWhen io_uring starts a write, it\u0027ll call kiocb_start_write() to bump the\nsuper block rwsem, preventing any freezes from happening while that\nwrite is in-flight. The freeze side will grab that rwsem for writing,\nexcluding any new writers from happening and waiting for existing writes\nto finish. But io_uring unconditionally uses kiocb_start_write(), which\nwill block if someone is currently attempting to freeze the mount point.\nThis causes a deadlock where freeze is waiting for previous writes to\ncomplete, but the previous writes cannot complete, as the task that is\nsupposed to complete them is blocked waiting on starting a new write.\nThis results in the following stuck trace showing that dependency with\nthe write blocked starting a new write:\n\ntask:fio state:D stack:0 pid:886 tgid:886 ppid:876\nCall trace:\n __switch_to+0x1d8/0x348\n __schedule+0x8e8/0x2248\n schedule+0x110/0x3f0\n percpu_rwsem_wait+0x1e8/0x3f8\n __percpu_down_read+0xe8/0x500\n io_write+0xbb8/0xff8\n io_issue_sqe+0x10c/0x1020\n io_submit_sqes+0x614/0x2110\n __arm64_sys_io_uring_enter+0x524/0x1038\n invoke_syscall+0x74/0x268\n el0_svc_common.constprop.0+0x160/0x238\n do_el0_svc+0x44/0x60\n el0_svc+0x44/0xb0\n el0t_64_sync_handler+0x118/0x128\n el0t_64_sync+0x168/0x170\nINFO: task fsfreeze:7364 blocked for more than 15 seconds.\n Not tainted 6.12.0-rc5-00063-g76aaf945701c #7963\n\nwith the attempting freezer stuck trying to grab the rwsem:\n\ntask:fsfreeze state:D stack:0 pid:7364 tgid:7364 ppid:995\nCall trace:\n __switch_to+0x1d8/0x348\n __schedule+0x8e8/0x2248\n schedule+0x110/0x3f0\n percpu_down_write+0x2b0/0x680\n freeze_super+0x248/0x8a8\n do_vfs_ioctl+0x149c/0x1b18\n __arm64_sys_ioctl+0xd0/0x1a0\n invoke_syscall+0x74/0x268\n el0_svc_common.constprop.0+0x160/0x238\n do_el0_svc+0x44/0x60\n el0_svc+0x44/0xb0\n el0t_64_sync_handler+0x118/0x128\n el0t_64_sync+0x168/0x170\n\nFix this by having the io_uring side honor IOCB_NOWAIT, and only attempt a\nblocking grab of the super block rwsem if it isn\u0027t set. For normal issue\nwhere IOCB_NOWAIT would always be set, this returns -EAGAIN which will\nhave io_uring core issue a blocking attempt of the write. That will in\nturn also get completions run, ensuring forward progress.\n\nSince freezing requires CAP_SYS_ADMIN in the first place, this isn\u0027t\nsomething that can be triggered by a regular user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53052",
"url": "https://www.suse.com/security/cve/CVE-2024-53052"
},
{
"category": "external",
"summary": "SUSE Bug 1233548 for CVE-2024-53052",
"url": "https://bugzilla.suse.com/1233548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53052"
},
{
"cve": "CVE-2024-53058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53058"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data\n\nIn case the non-paged data of a SKB carries protocol header and protocol\npayload to be transmitted on a certain platform that the DMA AXI address\nwidth is configured to 40-bit/48-bit, or the size of the non-paged data\nis bigger than TSO_MAX_BUFF_SIZE on a certain platform that the DMA AXI\naddress width is configured to 32-bit, then this SKB requires at least\ntwo DMA transmit descriptors to serve it.\n\nFor example, three descriptors are allocated to split one DMA buffer\nmapped from one piece of non-paged data:\n dma_desc[N + 0],\n dma_desc[N + 1],\n dma_desc[N + 2].\nThen three elements of tx_q-\u003etx_skbuff_dma[] will be allocated to hold\nextra information to be reused in stmmac_tx_clean():\n tx_q-\u003etx_skbuff_dma[N + 0],\n tx_q-\u003etx_skbuff_dma[N + 1],\n tx_q-\u003etx_skbuff_dma[N + 2].\nNow we focus on tx_q-\u003etx_skbuff_dma[entry].buf, which is the DMA buffer\naddress returned by DMA mapping call. stmmac_tx_clean() will try to\nunmap the DMA buffer _ONLY_IF_ tx_q-\u003etx_skbuff_dma[entry].buf\nis a valid buffer address.\n\nThe expected behavior that saves DMA buffer address of this non-paged\ndata to tx_q-\u003etx_skbuff_dma[entry].buf is:\n tx_q-\u003etx_skbuff_dma[N + 0].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 1].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 2].buf = dma_map_single();\nUnfortunately, the current code misbehaves like this:\n tx_q-\u003etx_skbuff_dma[N + 0].buf = dma_map_single();\n tx_q-\u003etx_skbuff_dma[N + 1].buf = NULL;\n tx_q-\u003etx_skbuff_dma[N + 2].buf = NULL;\n\nOn the stmmac_tx_clean() side, when dma_desc[N + 0] is closed by the\nDMA engine, tx_q-\u003etx_skbuff_dma[N + 0].buf is a valid buffer address\nobviously, then the DMA buffer will be unmapped immediately.\nThere may be a rare case that the DMA engine does not finish the\npending dma_desc[N + 1], dma_desc[N + 2] yet. Now things will go\nhorribly wrong, DMA is going to access a unmapped/unreferenced memory\nregion, corrupted data will be transmited or iommu fault will be\ntriggered :(\n\nIn contrast, the for-loop that maps SKB fragments behaves perfectly\nas expected, and that is how the driver should do for both non-paged\ndata and paged frags actually.\n\nThis patch corrects DMA map/unmap sequences by fixing the array index\nfor tx_q-\u003etx_skbuff_dma[entry].buf when assigning DMA buffer address.\n\nTested and verified on DWXGMAC CORE 3.20a",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53058",
"url": "https://www.suse.com/security/cve/CVE-2024-53058"
},
{
"category": "external",
"summary": "SUSE Bug 1233552 for CVE-2024-53058",
"url": "https://bugzilla.suse.com/1233552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53058"
},
{
"cve": "CVE-2024-53059",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53059"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()\n\n1. The size of the response packet is not validated.\n2. The response buffer is not freed.\n\nResolve these issues by switching to iwl_mvm_send_cmd_status(),\nwhich handles both size validation and frees the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53059",
"url": "https://www.suse.com/security/cve/CVE-2024-53059"
},
{
"category": "external",
"summary": "SUSE Bug 1233553 for CVE-2024-53059",
"url": "https://bugzilla.suse.com/1233553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53059"
},
{
"cve": "CVE-2024-53060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: prevent NULL pointer dereference if ATIF is not supported\n\nacpi_evaluate_object() may return AE_NOT_FOUND (failure), which\nwould result in dereferencing buffer.pointer (obj) while being NULL.\n\nAlthough this case may be unrealistic for the current code, it is\nstill better to protect against possible bugs.\n\nBail out also when status is AE_NOT_FOUND.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity\nReport: CID 1600951: Null pointer dereferences (FORWARD_NULL)\n\n(cherry picked from commit 91c9e221fe2553edf2db71627d8453f083de87a1)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53060",
"url": "https://www.suse.com/security/cve/CVE-2024-53060"
},
{
"category": "external",
"summary": "SUSE Bug 1233554 for CVE-2024-53060",
"url": "https://bugzilla.suse.com/1233554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53060"
},
{
"cve": "CVE-2024-53061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53061"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: s5p-jpeg: prevent buffer overflows\n\nThe current logic allows word to be less than 2. If this happens,\nthere will be buffer overflows, as reported by smatch. Add extra\nchecks to prevent it.\n\nWhile here, remove an unused word = 0 assignment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53061",
"url": "https://www.suse.com/security/cve/CVE-2024-53061"
},
{
"category": "external",
"summary": "SUSE Bug 1233555 for CVE-2024-53061",
"url": "https://bugzilla.suse.com/1233555"
},
{
"category": "external",
"summary": "SUSE Bug 1233621 for CVE-2024-53061",
"url": "https://bugzilla.suse.com/1233621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-53061"
},
{
"cve": "CVE-2024-53063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53063"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvbdev: prevent the risk of out of memory access\n\nThe dvbdev contains a static variable used to store dvb minors.\n\nThe behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set\nor not. When not set, dvb_register_device() won\u0027t check for\nboundaries, as it will rely that a previous call to\ndvb_register_adapter() would already be enforcing it.\n\nOn a similar way, dvb_device_open() uses the assumption\nthat the register functions already did the needed checks.\n\nThis can be fragile if some device ends using different\ncalls. This also generate warnings on static check analysers\nlike Coverity.\n\nSo, add explicit guards to prevent potential risk of OOM issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53063",
"url": "https://www.suse.com/security/cve/CVE-2024-53063"
},
{
"category": "external",
"summary": "SUSE Bug 1225742 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1225742"
},
{
"category": "external",
"summary": "SUSE Bug 1233557 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1233557"
},
{
"category": "external",
"summary": "SUSE Bug 1233619 for CVE-2024-53063",
"url": "https://bugzilla.suse.com/1233619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-53063"
},
{
"cve": "CVE-2024-53066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs: Fix KMSAN warning in decode_getfattr_attrs()\n\nFix the following KMSAN warning:\n\nCPU: 1 UID: 0 PID: 7651 Comm: cp Tainted: G B\nTainted: [B]=BAD_PAGE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009)\n=====================================================\n=====================================================\nBUG: KMSAN: uninit-value in decode_getfattr_attrs+0x2d6d/0x2f90\n decode_getfattr_attrs+0x2d6d/0x2f90\n decode_getfattr_generic+0x806/0xb00\n nfs4_xdr_dec_getattr+0x1de/0x240\n rpcauth_unwrap_resp_decode+0xab/0x100\n rpcauth_unwrap_resp+0x95/0xc0\n call_decode+0x4ff/0xb50\n __rpc_execute+0x57b/0x19d0\n rpc_execute+0x368/0x5e0\n rpc_run_task+0xcfe/0xee0\n nfs4_proc_getattr+0x5b5/0x990\n __nfs_revalidate_inode+0x477/0xd00\n nfs_access_get_cached+0x1021/0x1cc0\n nfs_do_access+0x9f/0xae0\n nfs_permission+0x1e4/0x8c0\n inode_permission+0x356/0x6c0\n link_path_walk+0x958/0x1330\n path_lookupat+0xce/0x6b0\n filename_lookup+0x23e/0x770\n vfs_statx+0xe7/0x970\n vfs_fstatat+0x1f2/0x2c0\n __se_sys_newfstatat+0x67/0x880\n __x64_sys_newfstatat+0xbd/0x120\n x64_sys_call+0x1826/0x3cf0\n do_syscall_64+0xd0/0x1b0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe KMSAN warning is triggered in decode_getfattr_attrs(), when calling\ndecode_attr_mdsthreshold(). It appears that fattr-\u003emdsthreshold is not\ninitialized.\n\nFix the issue by initializing fattr-\u003emdsthreshold to NULL in\nnfs_fattr_init().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53066",
"url": "https://www.suse.com/security/cve/CVE-2024-53066"
},
{
"category": "external",
"summary": "SUSE Bug 1233560 for CVE-2024-53066",
"url": "https://bugzilla.suse.com/1233560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53066"
},
{
"cve": "CVE-2024-53068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53068"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier()\n\nThe scmi_dev-\u003ename is released prematurely in __scmi_device_destroy(),\nwhich causes slab-use-after-free when accessing scmi_dev-\u003ename in\nscmi_bus_notifier(). So move the release of scmi_dev-\u003ename to\nscmi_device_release() to avoid slab-use-after-free.\n\n | BUG: KASAN: slab-use-after-free in strncmp+0xe4/0xec\n | Read of size 1 at addr ffffff80a482bcc0 by task swapper/0/1\n |\n | CPU: 1 PID: 1 Comm: swapper/0 Not tainted 6.6.38-debug #1\n | Hardware name: Qualcomm Technologies, Inc. SA8775P Ride (DT)\n | Call trace:\n | dump_backtrace+0x94/0x114\n | show_stack+0x18/0x24\n | dump_stack_lvl+0x48/0x60\n | print_report+0xf4/0x5b0\n | kasan_report+0xa4/0xec\n | __asan_report_load1_noabort+0x20/0x2c\n | strncmp+0xe4/0xec\n | scmi_bus_notifier+0x5c/0x54c\n | notifier_call_chain+0xb4/0x31c\n | blocking_notifier_call_chain+0x68/0x9c\n | bus_notify+0x54/0x78\n | device_del+0x1bc/0x840\n | device_unregister+0x20/0xb4\n | __scmi_device_destroy+0xac/0x280\n | scmi_device_destroy+0x94/0xd0\n | scmi_chan_setup+0x524/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20\n |\n | Allocated by task 1:\n | kasan_save_stack+0x2c/0x54\n | kasan_set_track+0x2c/0x40\n | kasan_save_alloc_info+0x24/0x34\n | __kasan_kmalloc+0xa0/0xb8\n | __kmalloc_node_track_caller+0x6c/0x104\n | kstrdup+0x48/0x84\n | kstrdup_const+0x34/0x40\n | __scmi_device_create.part.0+0x8c/0x408\n | scmi_device_create+0x104/0x370\n | scmi_chan_setup+0x2a0/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20\n |\n | Freed by task 1:\n | kasan_save_stack+0x2c/0x54\n | kasan_set_track+0x2c/0x40\n | kasan_save_free_info+0x38/0x5c\n | __kasan_slab_free+0xe8/0x164\n | __kmem_cache_free+0x11c/0x230\n | kfree+0x70/0x130\n | kfree_const+0x20/0x40\n | __scmi_device_destroy+0x70/0x280\n | scmi_device_destroy+0x94/0xd0\n | scmi_chan_setup+0x524/0x750\n | scmi_probe+0x7fc/0x1508\n | platform_probe+0xc4/0x19c\n | really_probe+0x32c/0x99c\n | __driver_probe_device+0x15c/0x3c4\n | driver_probe_device+0x5c/0x170\n | __driver_attach+0x1c8/0x440\n | bus_for_each_dev+0xf4/0x178\n | driver_attach+0x3c/0x58\n | bus_add_driver+0x234/0x4d4\n | driver_register+0xf4/0x3c0\n | __platform_driver_register+0x60/0x88\n | scmi_driver_init+0xb0/0x104\n | do_one_initcall+0xb4/0x664\n | kernel_init_freeable+0x3c8/0x894\n | kernel_init+0x24/0x1e8\n | ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53068",
"url": "https://www.suse.com/security/cve/CVE-2024-53068"
},
{
"category": "external",
"summary": "SUSE Bug 1233561 for CVE-2024-53068",
"url": "https://bugzilla.suse.com/1233561"
},
{
"category": "external",
"summary": "SUSE Bug 1233618 for CVE-2024-53068",
"url": "https://bugzilla.suse.com/1233618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-53068"
},
{
"cve": "CVE-2024-53079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/thp: fix deferred split unqueue naming and locking\n\nRecent changes are putting more pressure on THP deferred split queues:\nunder load revealing long-standing races, causing list_del corruptions,\n\"Bad page state\"s and worse (I keep BUGs in both of those, so usually\ndon\u0027t get to see how badly they end up without). The relevant recent\nchanges being 6.8\u0027s mTHP, 6.10\u0027s mTHP swapout, and 6.12\u0027s mTHP swapin,\nimproved swap allocation, and underused THP splitting.\n\nBefore fixing locking: rename misleading folio_undo_large_rmappable(),\nwhich does not undo large_rmappable, to folio_unqueue_deferred_split(),\nwhich is what it does. But that and its out-of-line __callee are mm\ninternals of very limited usability: add comment and WARN_ON_ONCEs to\ncheck usage; and return a bool to say if a deferred split was unqueued,\nwhich can then be used in WARN_ON_ONCEs around safety checks (sparing\ncallers the arcane conditionals in __folio_unqueue_deferred_split()).\n\nJust omit the folio_unqueue_deferred_split() from free_unref_folios(), all\nof whose callers now call it beforehand (and if any forget then bad_page()\nwill tell) - except for its caller put_pages_list(), which itself no\nlonger has any callers (and will be deleted separately).\n\nSwapout: mem_cgroup_swapout() has been resetting folio-\u003ememcg_data 0\nwithout checking and unqueueing a THP folio from deferred split list;\nwhich is unfortunate, since the split_queue_lock depends on the memcg\n(when memcg is enabled); so swapout has been unqueueing such THPs later,\nwhen freeing the folio, using the pgdat\u0027s lock instead: potentially\ncorrupting the memcg\u0027s list. __remove_mapping() has frozen refcount to 0\nhere, so no problem with calling folio_unqueue_deferred_split() before\nresetting memcg_data.\n\nThat goes back to 5.4 commit 87eaceb3faa5 (\"mm: thp: make deferred split\nshrinker memcg aware\"): which included a check on swapcache before adding\nto deferred queue, but no check on deferred queue before adding THP to\nswapcache. That worked fine with the usual sequence of events in reclaim\n(though there were a couple of rare ways in which a THP on deferred queue\ncould have been swapped out), but 6.12 commit dafff3f4c850 (\"mm: split\nunderused THPs\") avoids splitting underused THPs in reclaim, which makes\nswapcache THPs on deferred queue commonplace.\n\nKeep the check on swapcache before adding to deferred queue? Yes: it is\nno longer essential, but preserves the existing behaviour, and is likely\nto be a worthwhile optimization (vmstat showed much more traffic on the\nqueue under swapping load if the check was removed); update its comment.\n\nMemcg-v1 move (deprecated): mem_cgroup_move_account() has been changing\nfolio-\u003ememcg_data without checking and unqueueing a THP folio from the\ndeferred list, sometimes corrupting \"from\" memcg\u0027s list, like swapout. \nRefcount is non-zero here, so folio_unqueue_deferred_split() can only be\nused in a WARN_ON_ONCE to validate the fix, which must be done earlier:\nmem_cgroup_move_charge_pte_range() first try to split the THP (splitting\nof course unqueues), or skip it if that fails. Not ideal, but moving\ncharge has been requested, and khugepaged should repair the THP later:\nnobody wants new custom unqueueing code just for this deprecated case.\n\nThe 87eaceb3faa5 commit did have the code to move from one deferred list\nto another (but was not conscious of its unsafety while refcount non-0);\nbut that was removed by 5.6 commit fac0516b5534 (\"mm: thp: don\u0027t need care\ndeferred split queue in memcg charge move path\"), which argued that the\nexistence of a PMD mapping guarantees that the THP cannot be on a deferred\nlist. As above, false in rare cases, and now commonly false.\n\nBackport to 6.11 should be straightforward. Earlier backports must take\ncare that other _deferred_list fixes and dependencies are included. There\nis not a strong case for backports, but they can fix cornercases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53079",
"url": "https://www.suse.com/security/cve/CVE-2024-53079"
},
{
"category": "external",
"summary": "SUSE Bug 1233570 for CVE-2024-53079",
"url": "https://bugzilla.suse.com/1233570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "low"
}
],
"title": "CVE-2024-53079"
},
{
"cve": "CVE-2024-53085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Lock TPM chip in tpm_pm_suspend() first\n\nSetting TPM_CHIP_FLAG_SUSPENDED in the end of tpm_pm_suspend() can be racy\naccording, as this leaves window for tpm_hwrng_read() to be called while\nthe operation is in progress. The recent bug report gives also evidence of\nthis behaviour.\n\nAadress this by locking the TPM chip before checking any chip-\u003eflags both\nin tpm_pm_suspend() and tpm_hwrng_read(). Move TPM_CHIP_FLAG_SUSPENDED\ncheck inside tpm_get_random() so that it will be always checked only when\nthe lock is reserved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53085",
"url": "https://www.suse.com/security/cve/CVE-2024-53085"
},
{
"category": "external",
"summary": "SUSE Bug 1233577 for CVE-2024-53085",
"url": "https://bugzilla.suse.com/1233577"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53085"
},
{
"cve": "CVE-2024-53088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: fix race condition by adding filter\u0027s intermediate sync state\n\nFix a race condition in the i40e driver that leads to MAC/VLAN filters\nbecoming corrupted and leaking. Address the issue that occurs under\nheavy load when multiple threads are concurrently modifying MAC/VLAN\nfilters by setting mac and port VLAN.\n\n1. Thread T0 allocates a filter in i40e_add_filter() within\n i40e_ndo_set_vf_port_vlan().\n2. Thread T1 concurrently frees the filter in __i40e_del_filter() within\n i40e_ndo_set_vf_mac().\n3. Subsequently, i40e_service_task() calls i40e_sync_vsi_filters(), which\n refers to the already freed filter memory, causing corruption.\n\nReproduction steps:\n1. Spawn multiple VFs.\n2. Apply a concurrent heavy load by running parallel operations to change\n MAC addresses on the VFs and change port VLANs on the host.\n3. Observe errors in dmesg:\n\"Error I40E_AQ_RC_ENOSPC adding RX filters on VF XX,\n\tplease set promiscuous on manually for VF XX\".\n\nExact code for stable reproduction Intel can\u0027t open-source now.\n\nThe fix involves implementing a new intermediate filter state,\nI40E_FILTER_NEW_SYNC, for the time when a filter is on a tmp_add_list.\nThese filters cannot be deleted from the hash list directly but\nmust be removed using the full process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53088",
"url": "https://www.suse.com/security/cve/CVE-2024-53088"
},
{
"category": "external",
"summary": "SUSE Bug 1233580 for CVE-2024-53088",
"url": "https://bugzilla.suse.com/1233580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53088"
},
{
"cve": "CVE-2024-53104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format\n\nThis can lead to out of bounds writes since frames of this type were not\ntaken into account when calculating the size of the frames buffer in\nuvc_parse_streaming.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53104",
"url": "https://www.suse.com/security/cve/CVE-2024-53104"
},
{
"category": "external",
"summary": "SUSE Bug 1234025 for CVE-2024-53104",
"url": "https://bugzilla.suse.com/1234025"
},
{
"category": "external",
"summary": "SUSE Bug 1236783 for CVE-2024-53104",
"url": "https://bugzilla.suse.com/1236783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "important"
}
],
"title": "CVE-2024-53104"
},
{
"cve": "CVE-2024-53110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvp_vdpa: fix id_table array not null terminated error\n\nAllocate one extra virtio_device_id as null terminator, otherwise\nvdpa_mgmtdev_get_classes() may iterate multiple times and visit\nundefined memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53110",
"url": "https://www.suse.com/security/cve/CVE-2024-53110"
},
{
"category": "external",
"summary": "SUSE Bug 1234085 for CVE-2024-53110",
"url": "https://bugzilla.suse.com/1234085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.75.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.75.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.75.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-18T15:03:33Z",
"details": "moderate"
}
],
"title": "CVE-2024-53110"
}
]
}
suse-su-2024:3564-1
Vulnerability from csaf_suse
Published
2024-10-09 09:09
Modified
2024-10-09 09:09
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Merge branch 'SLE15-SP6' (ea7c56db3e5d) into 'SLE15-SP6-RT'
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- No -rt specific changes this merge.
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for 'dra7xx-pcie-main' IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Revert 'Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE' (git-fixes).
- Revert 'PCI: Extend ACS configurability (bsc#1228090).' (bsc#1229019)
- Revert 'drm/amdgpu: align pp_power_profile_mode with kernel docs' (stable-fixes).
- Revert 'media: tuners: fix error return code of hybrid_tuner_request_state()' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section'
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage'
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()'
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kABI: Split kABI out of 'io_uring/kbuf: get rid of bl->is_ready'
- kABI: Split kABI out of 'io_uring: Re-add dummy_ubuf for kABI purposes'
- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for '/tmp/perf-$PID.map' files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-2024-3564,SUSE-SLE-Module-Live-Patching-15-SP6-2024-3564,SUSE-SLE-Module-RT-15-SP6-2024-3564,openSUSE-SLE-15.6-2024-3564
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-42265: protect the fetch of -\u003efd[fd] in do_dup2() from mispredictions (bsc#1229334).\n- CVE-2024-42294: block: fix deadlock between sd_remove \u0026 sd_release (bsc#1229371).\n- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).\n- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).\n- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).\n- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).\n- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).\n- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45003: Don\u0027t evict inode under the inode lru traversing context (bsc#1230245).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).\n- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).\n- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).\n- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).\n- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).\n- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: tegra: Fix CBB error during probe() (git-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- Merge branch \u0027SLE15-SP6\u0027 (ea7c56db3e5d) into \u0027SLE15-SP6-RT\u0027\n- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).\n- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).\n- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- No -rt specific changes this merge.\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \u0027dra7xx-pcie-main\u0027 IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).\n- Revert \u0027Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE\u0027 (git-fixes).\n- Revert \u0027PCI: Extend ACS configurability (bsc#1228090).\u0027 (bsc#1229019)\n- Revert \u0027drm/amdgpu: align pp_power_profile_mode with kernel docs\u0027 (stable-fixes).\n- Revert \u0027media: tuners: fix error return code of hybrid_tuner_request_state()\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027\n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027\n- Squashfs: sanity check symbolic link size (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: bcm: Remove proc entry when dev is unregistered (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: Release irq on error in m_can_open (git-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).\n- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).\n- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).\n- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).\n- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).\n- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).\n- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- driver: iio: add missing checks on iio_info\u0027s callback access (stable-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing (stable-fixes).\n- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).\n- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check BIOS images before it is used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check gpio_id before used as array index (stable-fixes).\n- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).\n- drm/amd/display: Check msg_id before processing transcation (stable-fixes).\n- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).\n- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).\n- drm/amd/display: Ensure array index tg_inst won\u0027t be -1 (stable-fixes).\n- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).\n- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).\n- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).\n- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).\n- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).\n- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).\n- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amd/display: Spinlock before reading event (stable-fixes).\n- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).\n- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).\n- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).\n- drm/amd/pm: Fix negative array index read (stable-fixes).\n- drm/amd/pm: check negtive return for table entries (stable-fixes).\n- drm/amd/pm: check specific index for aldebaran (stable-fixes).\n- drm/amd/pm: check specific index for smu13 (stable-fixes).\n- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).\n- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).\n- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).\n- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).\n- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).\n- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).\n- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).\n- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).\n- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).\n- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).\n- drm/amdgpu: fix dereference after null check (stable-fixes).\n- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix overflowed array index read warning (stable-fixes).\n- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).\n- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).\n- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).\n- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).\n- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).\n- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).\n- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).\n- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).\n- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).\n- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).\n- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).\n- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).\n- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/meson: plane: Add error handling (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).\n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- fuse: fix memory leak in fuse_create_open (bsc#1230124).\n- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).\n- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).\n- gpio: modepin: Enable module autoloading (git-fixes).\n- gpio: rockchip: fix OF node leak in probe() (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- iio: adc: ad7124: fix chip ID mismatch (git-fixes).\n- iio: adc: ad7124: fix config comparison (git-fixes).\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).\n- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)\n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- kABI: Split kABI out of \u0027io_uring/kbuf: get rid of bl-\u003eis_ready\u0027\n- kABI: Split kABI out of \u0027io_uring: Re-add dummy_ubuf for kABI purposes\u0027\n- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference\n- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- misc: fastrpc: Fix double free of \u0027buf\u0027 in error path (git-fixes).\n- mmc: core: apply SD quirks earlier during probe (git-fixes).\n- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).\n- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).\n- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup (git-fixes).\n- net: phy: Fix missing of_node_put() for leds (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nilfs2: fix state management in error path of log writing function (git-fixes).\n- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).\n- nouveau: fix the fwsec sb verification register (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).\n- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \u0027/tmp/perf-$PID.map\u0027 files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).\n- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- usbip: Do not submit special requests twice (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- usbnet: modern method to get random MAC (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath11k: initialize \u0027ret\u0027 in ath11k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).\n- wifi: cfg80211: restrict operation during radar detection (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).\n- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).\n- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).\n- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3564,SUSE-SLE-Module-Live-Patching-15-SP6-2024-3564,SUSE-SLE-Module-RT-15-SP6-2024-3564,openSUSE-SLE-15.6-2024-3564",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3564-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3564-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243564-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3564-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-October/037178.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1183045",
"url": "https://bugzilla.suse.com/1183045"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221527",
"url": "https://bugzilla.suse.com/1221527"
},
{
"category": "self",
"summary": "SUSE Bug 1221610",
"url": "https://bugzilla.suse.com/1221610"
},
{
"category": "self",
"summary": "SUSE Bug 1221650",
"url": "https://bugzilla.suse.com/1221650"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226846",
"url": "https://bugzilla.suse.com/1226846"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227726",
"url": "https://bugzilla.suse.com/1227726"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229001",
"url": "https://bugzilla.suse.com/1229001"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229334",
"url": "https://bugzilla.suse.com/1229334"
},
{
"category": "self",
"summary": "SUSE Bug 1229362",
"url": "https://bugzilla.suse.com/1229362"
},
{
"category": "self",
"summary": "SUSE Bug 1229363",
"url": "https://bugzilla.suse.com/1229363"
},
{
"category": "self",
"summary": "SUSE Bug 1229364",
"url": "https://bugzilla.suse.com/1229364"
},
{
"category": "self",
"summary": "SUSE Bug 1229371",
"url": "https://bugzilla.suse.com/1229371"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229389",
"url": "https://bugzilla.suse.com/1229389"
},
{
"category": "self",
"summary": "SUSE Bug 1229394",
"url": "https://bugzilla.suse.com/1229394"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229753",
"url": "https://bugzilla.suse.com/1229753"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229810",
"url": "https://bugzilla.suse.com/1229810"
},
{
"category": "self",
"summary": "SUSE Bug 1229899",
"url": "https://bugzilla.suse.com/1229899"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230123",
"url": "https://bugzilla.suse.com/1230123"
},
{
"category": "self",
"summary": "SUSE Bug 1230124",
"url": "https://bugzilla.suse.com/1230124"
},
{
"category": "self",
"summary": "SUSE Bug 1230125",
"url": "https://bugzilla.suse.com/1230125"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230171",
"url": "https://bugzilla.suse.com/1230171"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230180",
"url": "https://bugzilla.suse.com/1230180"
},
{
"category": "self",
"summary": "SUSE Bug 1230181",
"url": "https://bugzilla.suse.com/1230181"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230245",
"url": "https://bugzilla.suse.com/1230245"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE Bug 1231182",
"url": "https://bugzilla.suse.com/1231182"
},
{
"category": "self",
"summary": "SUSE Bug 1231183",
"url": "https://bugzilla.suse.com/1231183"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52610 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26640 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42294 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42304 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42305 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42306 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-10-09T09:09:06Z",
"generator": {
"date": "2024-10-09T09:09:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3564-1",
"initial_release_date": "2024-10-09T09:09:06Z",
"revision_history": [
{
"date": "2024-10-09T09:09:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"product_id": "kernel-source-rt-6.4.0-150600.10.14.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-extra-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-optional-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"product_id": "reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Real Time Module 15 SP6",
"product": {
"name": "SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-rt:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-150600.10.14.1.noarch as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of SUSE Real Time Module 15 SP6",
"product_id": "SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-extra-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-optional-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-150600.10.14.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
},
"product_reference": "reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix skb leak and crash on ooo frags\n\nact_ct adds skb-\u003eusers before defragmentation. If frags arrive in order,\nthe last frag\u0027s reference is reset in:\n\n inet_frag_reasm_prepare\n skb_morph\n\nwhich is not straightforward.\n\nHowever when frags arrive out of order, nobody unref the last frag, and\nall frags are leaked. The situation is even worse, as initiating packet\ncapture can lead to a crash[0] when skb has been cloned and shared at the\nsame time.\n\nFix the issue by removing skb_get() before defragmentation. act_ct\nreturns TC_ACT_CONSUMED when defrag failed or in progress.\n\n[0]:\n[ 843.804823] ------------[ cut here ]------------\n[ 843.809659] kernel BUG at net/core/skbuff.c:2091!\n[ 843.814516] invalid opcode: 0000 [#1] PREEMPT SMP\n[ 843.819296] CPU: 7 PID: 0 Comm: swapper/7 Kdump: loaded Tainted: G S 6.7.0-rc3 #2\n[ 843.824107] Hardware name: XFUSION 1288H V6/BC13MBSBD, BIOS 1.29 11/25/2022\n[ 843.828953] RIP: 0010:pskb_expand_head+0x2ac/0x300\n[ 843.833805] Code: 8b 70 28 48 85 f6 74 82 48 83 c6 08 bf 01 00 00 00 e8 38 bd ff ff 8b 83 c0 00 00 00 48 03 83 c8 00 00 00 e9 62 ff ff ff 0f 0b \u003c0f\u003e 0b e8 8d d0 ff ff e9 b3 fd ff ff 81 7c 24 14 40 01 00 00 4c 89\n[ 843.843698] RSP: 0018:ffffc9000cce07c0 EFLAGS: 00010202\n[ 843.848524] RAX: 0000000000000002 RBX: ffff88811a211d00 RCX: 0000000000000820\n[ 843.853299] RDX: 0000000000000640 RSI: 0000000000000000 RDI: ffff88811a211d00\n[ 843.857974] RBP: ffff888127d39518 R08: 00000000bee97314 R09: 0000000000000000\n[ 843.862584] R10: 0000000000000000 R11: ffff8881109f0000 R12: 0000000000000880\n[ 843.867147] R13: ffff888127d39580 R14: 0000000000000640 R15: ffff888170f7b900\n[ 843.871680] FS: 0000000000000000(0000) GS:ffff889ffffc0000(0000) knlGS:0000000000000000\n[ 843.876242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 843.880778] CR2: 00007fa42affcfb8 CR3: 000000011433a002 CR4: 0000000000770ef0\n[ 843.885336] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 843.889809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 843.894229] PKRU: 55555554\n[ 843.898539] Call Trace:\n[ 843.902772] \u003cIRQ\u003e\n[ 843.906922] ? __die_body+0x1e/0x60\n[ 843.911032] ? die+0x3c/0x60\n[ 843.915037] ? do_trap+0xe2/0x110\n[ 843.918911] ? pskb_expand_head+0x2ac/0x300\n[ 843.922687] ? do_error_trap+0x65/0x80\n[ 843.926342] ? pskb_expand_head+0x2ac/0x300\n[ 843.929905] ? exc_invalid_op+0x50/0x60\n[ 843.933398] ? pskb_expand_head+0x2ac/0x300\n[ 843.936835] ? asm_exc_invalid_op+0x1a/0x20\n[ 843.940226] ? pskb_expand_head+0x2ac/0x300\n[ 843.943580] inet_frag_reasm_prepare+0xd1/0x240\n[ 843.946904] ip_defrag+0x5d4/0x870\n[ 843.950132] nf_ct_handle_fragments+0xec/0x130 [nf_conntrack]\n[ 843.953334] tcf_ct_act+0x252/0xd90 [act_ct]\n[ 843.956473] ? tcf_mirred_act+0x516/0x5a0 [act_mirred]\n[ 843.959657] tcf_action_exec+0xa1/0x160\n[ 843.962823] fl_classify+0x1db/0x1f0 [cls_flower]\n[ 843.966010] ? skb_clone+0x53/0xc0\n[ 843.969173] tcf_classify+0x24d/0x420\n[ 843.972333] tc_run+0x8f/0xf0\n[ 843.975465] __netif_receive_skb_core+0x67a/0x1080\n[ 843.978634] ? dev_gro_receive+0x249/0x730\n[ 843.981759] __netif_receive_skb_list_core+0x12d/0x260\n[ 843.984869] netif_receive_skb_list_internal+0x1cb/0x2f0\n[ 843.987957] ? mlx5e_handle_rx_cqe_mpwrq_rep+0xfa/0x1a0 [mlx5_core]\n[ 843.991170] napi_complete_done+0x72/0x1a0\n[ 843.994305] mlx5e_napi_poll+0x28c/0x6d0 [mlx5_core]\n[ 843.997501] __napi_poll+0x25/0x1b0\n[ 844.000627] net_rx_action+0x256/0x330\n[ 844.003705] __do_softirq+0xb3/0x29b\n[ 844.006718] irq_exit_rcu+0x9e/0xc0\n[ 844.009672] common_interrupt+0x86/0xa0\n[ 844.012537] \u003c/IRQ\u003e\n[ 844.015285] \u003cTASK\u003e\n[ 844.017937] asm_common_interrupt+0x26/0x40\n[ 844.020591] RIP: 0010:acpi_safe_halt+0x1b/0x20\n[ 844.023247] Code: ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 65 48 8b 04 25 00 18 03 00 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 81 d0 44 00 fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52610",
"url": "https://www.suse.com/security/cve/CVE-2023-52610"
},
{
"category": "external",
"summary": "SUSE Bug 1221610 for CVE-2023-52610",
"url": "https://bugzilla.suse.com/1221610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26640"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: add sanity checks to rx zerocopy\n\nTCP rx zerocopy intent is to map pages initially allocated\nfrom NIC drivers, not pages owned by a fs.\n\nThis patch adds to can_map_frag() these additional checks:\n\n- Page must not be a compound one.\n- page-\u003emapping must be NULL.\n\nThis fixes the panic reported by ZhangPeng.\n\nsyzbot was able to loopback packets built with sendfile(),\nmapping pages owned by an ext4 file to TCP rx zerocopy.\n\nr3 = socket$inet_tcp(0x2, 0x1, 0x0)\nmmap(\u0026(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)\nr4 = socket$inet_tcp(0x2, 0x1, 0x0)\nbind$inet(r4, \u0026(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10)\nconnect$inet(r4, \u0026(0x7f00000006c0)={0x2, 0x4e24, @empty}, 0x10)\nr5 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)\nfallocate(r5, 0x0, 0x0, 0x85b8)\nsendfile(r4, r5, 0x0, 0x8ba0)\ngetsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23,\n \u0026(0x7f00000001c0)={\u0026(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0,\n 0x0, 0x0, 0x0, 0x0}, \u0026(0x7f0000000440)=0x40)\nr6 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26640",
"url": "https://www.suse.com/security/cve/CVE-2024-26640"
},
{
"category": "external",
"summary": "SUSE Bug 1221650 for CVE-2024-26640",
"url": "https://bugzilla.suse.com/1221650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-26640"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data races in unix_release_sock/unix_stream_sendmsg\n\nA data-race condition has been identified in af_unix. In one data path,\nthe write function unix_release_sock() atomically writes to\nsk-\u003esk_shutdown using WRITE_ONCE. However, on the reader side,\nunix_stream_sendmsg() does not read it atomically. Consequently, this\nissue is causing the following KCSAN splat to occur:\n\n\tBUG: KCSAN: data-race in unix_release_sock / unix_stream_sendmsg\n\n\twrite (marked) to 0xffff88867256ddbb of 1 bytes by task 7270 on cpu 28:\n\tunix_release_sock (net/unix/af_unix.c:640)\n\tunix_release (net/unix/af_unix.c:1050)\n\tsock_close (net/socket.c:659 net/socket.c:1421)\n\t__fput (fs/file_table.c:422)\n\t__fput_sync (fs/file_table.c:508)\n\t__se_sys_close (fs/open.c:1559 fs/open.c:1541)\n\t__x64_sys_close (fs/open.c:1541)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tread to 0xffff88867256ddbb of 1 bytes by task 989 on cpu 14:\n\tunix_stream_sendmsg (net/unix/af_unix.c:2273)\n\t__sock_sendmsg (net/socket.c:730 net/socket.c:745)\n\t____sys_sendmsg (net/socket.c:2584)\n\t__sys_sendmmsg (net/socket.c:2638 net/socket.c:2724)\n\t__x64_sys_sendmmsg (net/socket.c:2753 net/socket.c:2750 net/socket.c:2750)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tvalue changed: 0x01 -\u003e 0x03\n\nThe line numbers are related to commit dd5a440a31fa (\"Linux 6.9-rc7\").\n\nCommit e1d09c2c2f57 (\"af_unix: Fix data races around sk-\u003esk_shutdown.\")\naddressed a comparable issue in the past regarding sk-\u003esk_shutdown.\nHowever, it overlooked resolving this particular data path.\nThis patch only offending unix_stream_sendmsg() function, since the\nother reads seem to be protected by unix_state_lock() as discussed in",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38596",
"url": "https://www.suse.com/security/cve/CVE-2024-38596"
},
{
"category": "external",
"summary": "SUSE Bug 1226846 for CVE-2024-38596",
"url": "https://bugzilla.suse.com/1226846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-38596"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray\n\nPatch series \"mm/filemap: Limit page cache size to that supported by\nxarray\", v2.\n\nCurrently, xarray can\u0027t support arbitrary page cache size. More details\ncan be found from the WARN_ON() statement in xas_split_alloc(). In our\ntest whose code is attached below, we hit the WARN_ON() on ARM64 system\nwhere the base page size is 64KB and huge page size is 512MB. The issue\nwas reported long time ago and some discussions on it can be found here\n[1].\n\n[1] https://www.spinics.net/lists/linux-xfs/msg75404.html\n\nIn order to fix the issue, we need to adjust MAX_PAGECACHE_ORDER to one\nsupported by xarray and avoid PMD-sized page cache if needed. The code\nchanges are suggested by David Hildenbrand.\n\nPATCH[1] adjusts MAX_PAGECACHE_ORDER to that supported by xarray\nPATCH[2-3] avoids PMD-sized page cache in the synchronous readahead path\nPATCH[4] avoids PMD-sized page cache for shmem files if needed\n\nTest program\n============\n# cat test.c\n#define _GNU_SOURCE\n#include \u003cstdio.h\u003e\n#include \u003cstdlib.h\u003e\n#include \u003cunistd.h\u003e\n#include \u003cstring.h\u003e\n#include \u003cfcntl.h\u003e\n#include \u003cerrno.h\u003e\n#include \u003csys/syscall.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define TEST_XFS_FILENAME\t\"/tmp/data\"\n#define TEST_SHMEM_FILENAME\t\"/dev/shm/data\"\n#define TEST_MEM_SIZE\t\t0x20000000\n\nint main(int argc, char **argv)\n{\n\tconst char *filename;\n\tint fd = 0;\n\tvoid *buf = (void *)-1, *p;\n\tint pgsize = getpagesize();\n\tint ret;\n\n\tif (pgsize != 0x10000) {\n\t\tfprintf(stderr, \"64KB base page size is required\\n\");\n\t\treturn -EPERM;\n\t}\n\n\tsystem(\"echo force \u003e /sys/kernel/mm/transparent_hugepage/shmem_enabled\");\n\tsystem(\"rm -fr /tmp/data\");\n\tsystem(\"rm -fr /dev/shm/data\");\n\tsystem(\"echo 1 \u003e /proc/sys/vm/drop_caches\");\n\n\t/* Open xfs or shmem file */\n\tfilename = TEST_XFS_FILENAME;\n\tif (argc \u003e 1 \u0026\u0026 !strcmp(argv[1], \"shmem\"))\n\t\tfilename = TEST_SHMEM_FILENAME;\n\n\tfd = open(filename, O_CREAT | O_RDWR | O_TRUNC);\n\tif (fd \u003c 0) {\n\t\tfprintf(stderr, \"Unable to open \u003c%s\u003e\\n\", filename);\n\t\treturn -EIO;\n\t}\n\n\t/* Extend file size */\n\tret = ftruncate(fd, TEST_MEM_SIZE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to ftruncate()\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Create VMA */\n\tbuf = mmap(NULL, TEST_MEM_SIZE,\n\t\t PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);\n\tif (buf == (void *)-1) {\n\t\tfprintf(stderr, \"Unable to mmap \u003c%s\u003e\\n\", filename);\n\t\tgoto cleanup;\n\t}\n\n\tfprintf(stdout, \"mapped buffer at 0x%p\\n\", buf);\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_HUGEPAGE);\n if (ret) {\n\t\tfprintf(stderr, \"Unable to madvise(MADV_HUGEPAGE)\\n\");\n\t\tgoto cleanup;\n\t}\n\n\t/* Populate VMA */\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_POPULATE_WRITE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to madvise(MADV_POPULATE_WRITE)\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Punch the file to enforce xarray split */\n\tret = fallocate(fd, FALLOC_FL_KEEP_SIZE | FALLOC_FL_PUNCH_HOLE,\n \t\tTEST_MEM_SIZE - pgsize, pgsize);\n\tif (ret)\n\t\tfprintf(stderr, \"Error %d to fallocate()\\n\", ret);\n\ncleanup:\n\tif (buf != (void *)-1)\n\t\tmunmap(buf, TEST_MEM_SIZE);\n\tif (fd \u003e 0)\n\t\tclose(fd);\n\n\treturn 0;\n}\n\n# gcc test.c -o test\n# cat /proc/1/smaps | grep KernelPageSize | head -n 1\nKernelPageSize: 64 kB\n# ./test shmem\n :\n------------[ cut here ]------------\nWARNING: CPU: 17 PID: 5253 at lib/xarray.c:1025 xas_split_alloc+0xf8/0x128\nModules linked in: nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib \\\nnft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct \\\nnft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 \\\nip_set nf_tables rfkill nfnetlink vfat fat virtio_balloon \\\ndrm fuse xfs libcrc32c crct10dif_ce ghash_ce sha2_ce sha256_arm64 \\\nvirtio_net sha1_ce net_failover failover virtio_console virtio_blk \\\ndimlib virtio_mmio\nCPU: 17 PID: 5253 Comm: test Kdump: loaded Tainted: G W 6.10.0-rc5-gavin+ #12\nHardware name: QEMU KVM Virtual Machine, BIOS edk2-20240524-1.el9 05/24/2024\npstate: 83400005 (Nzcv daif +PAN -UAO +TC\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42243",
"url": "https://www.suse.com/security/cve/CVE-2024-42243"
},
{
"category": "external",
"summary": "SUSE Bug 1229001 for CVE-2024-42243",
"url": "https://bugzilla.suse.com/1229001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42243"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-42265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of -\u003efd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than -\u003emax_fds;\nhowever, misprediction might end up with\n tofree = fdt-\u003efd[fd];\nbeing speculatively executed. That\u0027s wrong for the same reasons\nwhy it\u0027s wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt-\u003emax_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42265",
"url": "https://www.suse.com/security/cve/CVE-2024-42265"
},
{
"category": "external",
"summary": "SUSE Bug 1229334 for CVE-2024-42265",
"url": "https://bugzilla.suse.com/1229334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42265"
},
{
"cve": "CVE-2024-42294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix deadlock between sd_remove \u0026 sd_release\n\nOur test report the following hung task:\n\n[ 2538.459400] INFO: task \"kworker/0:0\":7 blocked for more than 188 seconds.\n[ 2538.459427] Call trace:\n[ 2538.459430] __switch_to+0x174/0x338\n[ 2538.459436] __schedule+0x628/0x9c4\n[ 2538.459442] schedule+0x7c/0xe8\n[ 2538.459447] schedule_preempt_disabled+0x24/0x40\n[ 2538.459453] __mutex_lock+0x3ec/0xf04\n[ 2538.459456] __mutex_lock_slowpath+0x14/0x24\n[ 2538.459459] mutex_lock+0x30/0xd8\n[ 2538.459462] del_gendisk+0xdc/0x350\n[ 2538.459466] sd_remove+0x30/0x60\n[ 2538.459470] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459474] device_release_driver+0x18/0x28\n[ 2538.459478] bus_remove_device+0x15c/0x174\n[ 2538.459483] device_del+0x1d0/0x358\n[ 2538.459488] __scsi_remove_device+0xa8/0x198\n[ 2538.459493] scsi_forget_host+0x50/0x70\n[ 2538.459497] scsi_remove_host+0x80/0x180\n[ 2538.459502] usb_stor_disconnect+0x68/0xf4\n[ 2538.459506] usb_unbind_interface+0xd4/0x280\n[ 2538.459510] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459514] device_release_driver+0x18/0x28\n[ 2538.459518] bus_remove_device+0x15c/0x174\n[ 2538.459523] device_del+0x1d0/0x358\n[ 2538.459528] usb_disable_device+0x84/0x194\n[ 2538.459532] usb_disconnect+0xec/0x300\n[ 2538.459537] hub_event+0xb80/0x1870\n[ 2538.459541] process_scheduled_works+0x248/0x4dc\n[ 2538.459545] worker_thread+0x244/0x334\n[ 2538.459549] kthread+0x114/0x1bc\n\n[ 2538.461001] INFO: task \"fsck.\":15415 blocked for more than 188 seconds.\n[ 2538.461014] Call trace:\n[ 2538.461016] __switch_to+0x174/0x338\n[ 2538.461021] __schedule+0x628/0x9c4\n[ 2538.461025] schedule+0x7c/0xe8\n[ 2538.461030] blk_queue_enter+0xc4/0x160\n[ 2538.461034] blk_mq_alloc_request+0x120/0x1d4\n[ 2538.461037] scsi_execute_cmd+0x7c/0x23c\n[ 2538.461040] ioctl_internal_command+0x5c/0x164\n[ 2538.461046] scsi_set_medium_removal+0x5c/0xb0\n[ 2538.461051] sd_release+0x50/0x94\n[ 2538.461054] blkdev_put+0x190/0x28c\n[ 2538.461058] blkdev_release+0x28/0x40\n[ 2538.461063] __fput+0xf8/0x2a8\n[ 2538.461066] __fput_sync+0x28/0x5c\n[ 2538.461070] __arm64_sys_close+0x84/0xe8\n[ 2538.461073] invoke_syscall+0x58/0x114\n[ 2538.461078] el0_svc_common+0xac/0xe0\n[ 2538.461082] do_el0_svc+0x1c/0x28\n[ 2538.461087] el0_svc+0x38/0x68\n[ 2538.461090] el0t_64_sync_handler+0x68/0xbc\n[ 2538.461093] el0t_64_sync+0x1a8/0x1ac\n\n T1:\t\t\t\tT2:\n sd_remove\n del_gendisk\n __blk_mark_disk_dead\n blk_freeze_queue_start\n ++q-\u003emq_freeze_depth\n \t\t\t\tbdev_release\n \t\t\t\tmutex_lock(\u0026disk-\u003eopen_mutex)\n \t\t\t\tsd_release\n \t\t\t\tscsi_execute_cmd\n \t\t\t\tblk_queue_enter\n \t\t\t\twait_event(!q-\u003emq_freeze_depth)\n mutex_lock(\u0026disk-\u003eopen_mutex)\n\nSCSI does not set GD_OWNS_QUEUE, so QUEUE_FLAG_DYING is not set in\nthis scenario. This is a classic ABBA deadlock. To fix the deadlock,\nmake sure we don\u0027t try to acquire disk-\u003eopen_mutex after freezing\nthe queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42294",
"url": "https://www.suse.com/security/cve/CVE-2024-42294"
},
{
"category": "external",
"summary": "SUSE Bug 1229371 for CVE-2024-42294",
"url": "https://bugzilla.suse.com/1229371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42294"
},
{
"cve": "CVE-2024-42304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: make sure the first directory block is not a hole\n\nThe syzbot constructs a directory that has no dirblock but is non-inline,\ni.e. the first directory block is a hole. And no errors are reported when\ncreating files in this directory in the following flow.\n\n ext4_mknod\n ...\n ext4_add_entry\n // Read block 0\n ext4_read_dirblock(dir, block, DIRENT)\n bh = ext4_bread(NULL, inode, block, 0)\n if (!bh \u0026\u0026 (type == INDEX || type == DIRENT_HTREE))\n // The first directory block is a hole\n // But type == DIRENT, so no error is reported.\n\nAfter that, we get a directory block without \u0027.\u0027 and \u0027..\u0027 but with a valid\ndentry. This may cause some code that relies on dot or dotdot (such as\nmake_indexed_dir()) to crash.\n\nTherefore when ext4_read_dirblock() finds that the first directory block\nis a hole report that the filesystem is corrupted and return an error to\navoid loading corrupted data from disk causing something bad.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42304",
"url": "https://www.suse.com/security/cve/CVE-2024-42304"
},
{
"category": "external",
"summary": "SUSE Bug 1229364 for CVE-2024-42304",
"url": "https://bugzilla.suse.com/1229364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42304"
},
{
"cve": "CVE-2024-42305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check dot and dotdot of dx_root before making dir indexed\n\nSyzbot reports a issue as follows:\n============================================\nBUG: unable to handle page fault for address: ffffed11022e24fe\nPGD 23ffee067 P4D 23ffee067 PUD 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 5079 Comm: syz-executor306 Not tainted 6.10.0-rc5-g55027e689933 #0\nCall Trace:\n \u003cTASK\u003e\n make_indexed_dir+0xdaf/0x13c0 fs/ext4/namei.c:2341\n ext4_add_entry+0x222a/0x25d0 fs/ext4/namei.c:2451\n ext4_rename fs/ext4/namei.c:3936 [inline]\n ext4_rename2+0x26e5/0x4370 fs/ext4/namei.c:4214\n[...]\n============================================\n\nThe immediate cause of this problem is that there is only one valid dentry\nfor the block to be split during do_split, so split==0 results in out of\nbounds accesses to the map triggering the issue.\n\n do_split\n unsigned split\n dx_make_map\n count = 1\n split = count/2 = 0;\n continued = hash2 == map[split - 1].hash;\n ---\u003e map[4294967295]\n\nThe maximum length of a filename is 255 and the minimum block size is 1024,\nso it is always guaranteed that the number of entries is greater than or\nequal to 2 when do_split() is called.\n\nBut syzbot\u0027s crafted image has no dot and dotdot in dir, and the dentry\ndistribution in dirblock is as follows:\n\n bus dentry1 hole dentry2 free\n|xx--|xx-------------|...............|xx-------------|...............|\n0 12 (8+248)=256 268 256 524 (8+256)=264 788 236 1024\n\nSo when renaming dentry1 increases its name_len length by 1, neither hole\nnor free is sufficient to hold the new dentry, and make_indexed_dir() is\ncalled.\n\nIn make_indexed_dir() it is assumed that the first two entries of the\ndirblock must be dot and dotdot, so bus and dentry1 are left in dx_root\nbecause they are treated as dot and dotdot, and only dentry2 is moved\nto the new leaf block. That\u0027s why count is equal to 1.\n\nTherefore add the ext4_check_dx_root() helper function to add more sanity\nchecks to dot and dotdot before starting the conversion to avoid the above\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42305",
"url": "https://www.suse.com/security/cve/CVE-2024-42305"
},
{
"category": "external",
"summary": "SUSE Bug 1229363 for CVE-2024-42305",
"url": "https://bugzilla.suse.com/1229363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42305"
},
{
"cve": "CVE-2024-42306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42306",
"url": "https://www.suse.com/security/cve/CVE-2024-42306"
},
{
"category": "external",
"summary": "SUSE Bug 1229362 for CVE-2024-42306",
"url": "https://bugzilla.suse.com/1229362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-42306"
},
{
"cve": "CVE-2024-43828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix infinite loop when replaying fast_commit\n\nWhen doing fast_commit replay an infinite loop may occur due to an\nuninitialized extent_status struct. ext4_ext_determine_insert_hole() does\nnot detect the replay and calls ext4_es_find_extent_range(), which will\nreturn immediately without initializing the \u0027es\u0027 variable.\n\nBecause \u0027es\u0027 contains garbage, an integer overflow may happen causing an\ninfinite loop in this function, easily reproducible using fstest generic/039.\n\nThis commit fixes this issue by unconditionally initializing the structure\nin function ext4_es_find_extent_range().\n\nThanks to Zhang Yi, for figuring out the real problem!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43828",
"url": "https://www.suse.com/security/cve/CVE-2024-43828"
},
{
"category": "external",
"summary": "SUSE Bug 1229394 for CVE-2024-43828",
"url": "https://bugzilla.suse.com/1229394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43828"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix bogus checksum computation in udf_rename()\n\nSyzbot reports uninitialized memory access in udf_rename() when updating\nchecksum of \u0027..\u0027 directory entry of a moved directory. This is indeed\ntrue as we pass on-stack diriter.fi to the udf_update_tag() and because\nthat has only struct fileIdentDesc included in it and not the impUse or\nname fields, the checksumming function is going to checksum random stack\ncontents beyond the end of the structure. This is actually harmless\nbecause the following udf_fiiter_write_fi() will recompute the checksum\nfrom on-disk buffers where everything is properly included. So all that\nis needed is just removing the bogus calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43845",
"url": "https://www.suse.com/security/cve/CVE-2024-43845"
},
{
"category": "external",
"summary": "SUSE Bug 1229389 for CVE-2024-43845",
"url": "https://bugzilla.suse.com/1229389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43845"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43898"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43898",
"url": "https://www.suse.com/security/cve/CVE-2024-43898"
},
{
"category": "external",
"summary": "SUSE Bug 1229753 for CVE-2024-43898",
"url": "https://bugzilla.suse.com/1229753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43898"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Fix null-ptr-deref in reuseport_add_sock().\n\nsyzbot reported a null-ptr-deref while accessing sk2-\u003esk_reuseport_cb in\nreuseport_add_sock(). [0]\n\nThe repro first creates a listener with SO_REUSEPORT. Then, it creates\nanother listener on the same port and concurrently closes the first\nlistener.\n\nThe second listen() calls reuseport_add_sock() with the first listener as\nsk2, where sk2-\u003esk_reuseport_cb is not expected to be cleared concurrently,\nbut the close() does clear it by reuseport_detach_sock().\n\nThe problem is SCTP does not properly synchronise reuseport_alloc(),\nreuseport_add_sock(), and reuseport_detach_sock().\n\nThe caller of reuseport_alloc() and reuseport_{add,detach}_sock() must\nprovide synchronisation for sockets that are classified into the same\nreuseport group.\n\nOtherwise, such sockets form multiple identical reuseport groups, and\nall groups except one would be silently dead.\n\n 1. Two sockets call listen() concurrently\n 2. No socket in the same group found in sctp_ep_hashtable[]\n 3. Two sockets call reuseport_alloc() and form two reuseport groups\n 4. Only one group hit first in __sctp_rcv_lookup_endpoint() receives\n incoming packets\n\nAlso, the reported null-ptr-deref could occur.\n\nTCP/UDP guarantees that would not happen by holding the hash bucket lock.\n\nLet\u0027s apply the locking strategy to __sctp_hash_endpoint() and\n__sctp_unhash_endpoint().\n\n[0]:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\nCPU: 1 UID: 0 PID: 10230 Comm: syz-executor119 Not tainted 6.10.0-syzkaller-12585-g301927d2d2eb #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nRIP: 0010:reuseport_add_sock+0x27e/0x5e0 net/core/sock_reuseport.c:350\nCode: 00 0f b7 5d 00 bf 01 00 00 00 89 de e8 1b a4 ff f7 83 fb 01 0f 85 a3 01 00 00 e8 6d a0 ff f7 49 8d 7e 12 48 89 f8 48 c1 e8 03 \u003c42\u003e 0f b6 04 28 84 c0 0f 85 4b 02 00 00 41 0f b7 5e 12 49 8d 7e 14\nRSP: 0018:ffffc9000b947c98 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff8880252ddf98 RCX: ffff888079478000\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000012\nRBP: 0000000000000001 R08: ffffffff8993e18d R09: 1ffffffff1fef385\nR10: dffffc0000000000 R11: fffffbfff1fef386 R12: ffff8880252ddac0\nR13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000\nFS: 00007f24e45b96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffcced5f7b8 CR3: 00000000241be000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __sctp_hash_endpoint net/sctp/input.c:762 [inline]\n sctp_hash_endpoint+0x52a/0x600 net/sctp/input.c:790\n sctp_listen_start net/sctp/socket.c:8570 [inline]\n sctp_inet_listen+0x767/0xa20 net/sctp/socket.c:8625\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]\n __se_sys_listen net/socket.c:1900 [inline]\n __x64_sys_listen+0x5a/0x70 net/socket.c:1900\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f24e46039b9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f24e45b9228 EFLAGS: 00000246 ORIG_RAX: 0000000000000032\nRAX: ffffffffffffffda RBX: 00007f24e468e428 RCX: 00007f24e46039b9\nRDX: 00007f24e46039b9 RSI: 0000000000000003 RDI: 0000000000000004\nRBP: 00007f24e468e420 R08: 00007f24e45b96c0 R09: 00007f24e45b96c0\nR10: 00007f24e45b96c0 R11: 0000000000000246 R12: 00007f24e468e42c\nR13:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44935",
"url": "https://www.suse.com/security/cve/CVE-2024-44935"
},
{
"category": "external",
"summary": "SUSE Bug 1229810 for CVE-2024-44935",
"url": "https://bugzilla.suse.com/1229810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44935"
},
{
"cve": "CVE-2024-44944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use helper function to calculate expect ID\n\nDelete expectation path is missing a call to the nf_expect_get_id()\nhelper function to calculate the expectation ID, otherwise LSB of the\nexpectation object address is leaked to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44944",
"url": "https://www.suse.com/security/cve/CVE-2024-44944"
},
{
"category": "external",
"summary": "SUSE Bug 1229899 for CVE-2024-44944",
"url": "https://bugzilla.suse.com/1229899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44944"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix invalid FIFO access with special register set\n\nWhen enabling access to the special register set, Receiver time-out and\nRHR interrupts can happen. In this case, the IRQ handler will try to read\nfrom the FIFO thru the RHR register at address 0x00, but address 0x00 is\nmapped to DLL register, resulting in erroneous FIFO reading.\n\nCall graph example:\n sc16is7xx_startup(): entry\n sc16is7xx_ms_proc(): entry\n sc16is7xx_set_termios(): entry\n sc16is7xx_set_baud(): DLH/DLL = $009C --\u003e access special register set\n sc16is7xx_port_irq() entry --\u003e IIR is 0x0C\n sc16is7xx_handle_rx() entry\n sc16is7xx_fifo_read(): --\u003e unable to access FIFO (RHR) because it is\n mapped to DLL (LCR=LCR_CONF_MODE_A)\n sc16is7xx_set_baud(): exit --\u003e Restore access to general register set\n\nFix the problem by claiming the efr_lock mutex when accessing the Special\nregister set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44950",
"url": "https://www.suse.com/security/cve/CVE-2024-44950"
},
{
"category": "external",
"summary": "SUSE Bug 1230180 for CVE-2024-44950",
"url": "https://bugzilla.suse.com/1230180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44950"
},
{
"cve": "CVE-2024-44951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix TX fifo corruption\n\nSometimes, when a packet is received on channel A at almost the same time\nas a packet is about to be transmitted on channel B, we observe with a\nlogic analyzer that the received packet on channel A is transmitted on\nchannel B. In other words, the Tx buffer data on channel B is corrupted\nwith data from channel A.\n\nThe problem appeared since commit 4409df5866b7 (\"serial: sc16is7xx: change\nEFR lock to operate on each channels\"), which changed the EFR locking to\noperate on each channel instead of chip-wise.\n\nThis commit has introduced a regression, because the EFR lock is used not\nonly to protect the EFR registers access, but also, in a very obscure and\nundocumented way, to protect access to the data buffer, which is shared by\nthe Tx and Rx handlers, but also by each channel of the IC.\n\nFix this regression first by switching to kfifo_out_linear_ptr() in\nsc16is7xx_handle_tx() to eliminate the need for a shared Rx/Tx buffer.\n\nSecondly, replace the chip-wise Rx buffer with a separate Rx buffer for\neach channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44951",
"url": "https://www.suse.com/security/cve/CVE-2024-44951"
},
{
"category": "external",
"summary": "SUSE Bug 1230181 for CVE-2024-44951",
"url": "https://bugzilla.suse.com/1230181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44951"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UAF in ip6_xmit()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand the associated dst/idev could also have been freed.\n\nWe must use rcu_read_lock() to prevent a possible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44985",
"url": "https://www.suse.com/security/cve/CVE-2024-44985"
},
{
"category": "external",
"summary": "SUSE Bug 1230206 for CVE-2024-44985",
"url": "https://bugzilla.suse.com/1230206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44985"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can\u0027t dereference \"skb\" after calling vcc-\u003epush() because the skb\nis released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44998",
"url": "https://www.suse.com/security/cve/CVE-2024-44998"
},
{
"category": "external",
"summary": "SUSE Bug 1230171 for CVE-2024-44998",
"url": "https://bugzilla.suse.com/1230171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44998"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: Don\u0027t evict inode under the inode lru traversing context\n\nThe inode reclaiming process(See function prune_icache_sb) collects all\nreclaimable inodes and mark them with I_FREEING flag at first, at that\ntime, other processes will be stuck if they try getting these inodes\n(See function find_inode_fast), then the reclaiming process destroy the\ninodes by function dispose_list(). Some filesystems(eg. ext4 with\nea_inode feature, ubifs with xattr) may do inode lookup in the inode\nevicting callback function, if the inode lookup is operated under the\ninode lru traversing context, deadlock problems may happen.\n\nCase 1: In function ext4_evict_inode(), the ea inode lookup could happen\n if ea_inode feature is enabled, the lookup process will be stuck\n\tunder the evicting context like this:\n\n 1. File A has inode i_reg and an ea inode i_ea\n 2. getfattr(A, xattr_buf) // i_ea is added into lru // lru-\u003ei_ea\n 3. Then, following three processes running like this:\n\n PA PB\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // i_reg is added into lru, lru-\u003ei_ea-\u003ei_reg\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n i_ea-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(i_reg)\n spin_unlock(\u0026i_reg-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file A\n i_reg-\u003enlink = 0\n iput(i_reg) // i_reg-\u003enlink is 0, do evict\n ext4_evict_inode\n ext4_xattr_delete_inode\n ext4_xattr_inode_dec_ref_all\n ext4_xattr_inode_iget\n ext4_iget(i_ea-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(i_ea) ----\u2192 AA deadlock\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026i_ea-\u003ei_state)\n\nCase 2: In deleted inode writing function ubifs_jnl_write_inode(), file\n deleting process holds BASEHD\u0027s wbuf-\u003eio_mutex while getting the\n\txattr inode, which could race with inode reclaiming process(The\n reclaiming process could try locking BASEHD\u0027s wbuf-\u003eio_mutex in\n\tinode evicting function), then an ABBA deadlock problem would\n\thappen as following:\n\n 1. File A has inode ia and a xattr(with inode ixa), regular file B has\n inode ib and a xattr.\n 2. getfattr(A, xattr_buf) // ixa is added into lru // lru-\u003eixa\n 3. Then, following three processes running like this:\n\n PA PB PC\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // ib and ia are added into lru, lru-\u003eixa-\u003eib-\u003eia\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n ixa-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(ib)\n spin_unlock(\u0026ib-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file B\n ib-\u003enlink = 0\n rm file A\n iput(ia)\n ubifs_evict_inode(ia)\n ubifs_jnl_delete_inode(ia)\n ubifs_jnl_write_inode(ia)\n make_reservation(BASEHD) // Lock wbuf-\u003eio_mutex\n ubifs_iget(ixa-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(ixa)\n | iput(ib) // ib-\u003enlink is 0, do evict\n | ubifs_evict_inode\n | ubifs_jnl_delete_inode(ib)\n \u2193 ubifs_jnl_write_inode\n ABBA deadlock \u2190-----make_reservation(BASEHD)\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026ixa-\u003ei_state)\n\nFix the possible deadlock by using new inode state flag I_LRU_ISOLATING\nto pin the inode in memory while inode_lru_isolate(\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45003",
"url": "https://www.suse.com/security/cve/CVE-2024-45003"
},
{
"category": "external",
"summary": "SUSE Bug 1230245 for CVE-2024-45003",
"url": "https://bugzilla.suse.com/1230245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45003"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_10_14-rt-1-150600.1.3.1.x86_64",
"SUSE Real Time Module 15 SP6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"SUSE Real Time Module 15 SP6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"SUSE Real Time Module 15 SP6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-extra-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-optional-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-livepatch-devel-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-rt_debug-vdso-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kernel-source-rt-6.4.0-150600.10.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-rt-6.4.0-150600.10.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-rt-6.4.0-150600.10.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-09T09:09:06Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2024:3551-1
Vulnerability from csaf_suse
Published
2024-10-08 15:03
Modified
2024-10-08 15:03
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- Drop soundwire patch that caused a regression (bsc#1230350)
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Move fixes into sorted section (bsc#1230119)
- Move s390 kabi patch into the kabi section
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for 'dra7xx-pcie-main' IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Revert 'Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE' (git-fixes).
- Revert 'PCI: Extend ACS configurability (bsc#1228090).' (bsc#1229019)
- Revert 'drm/amdgpu: align pp_power_profile_mode with kernel docs' (stable-fixes).
- Revert 'media: tuners: fix error return code of hybrid_tuner_request_state()' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section' (bsc#1230413)
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage' (bsc#1230413)
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()' (bsc#1230413)
- Split kabi part of dm_blk_ioctl-implement-path-failover-for-SG_IO.patch
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771) Move patch into the sorted section.
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kABI: Split kABI out of 'io_uring/kbuf: get rid of bl->is_ready'
- kABI: Split kABI out of 'io_uring: Re-add dummy_ubuf for kABI purposes'
- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for '/tmp/perf-$PID.map' files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-2024-3551,SUSE-SLE-Module-Public-Cloud-15-SP6-2024-3551,openSUSE-SLE-15.6-2024-3551
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-42265: protect the fetch of -\u003efd[fd] in do_dup2() from mispredictions (bsc#1229334).\n- CVE-2024-42294: block: fix deadlock between sd_remove \u0026 sd_release (bsc#1229371).\n- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).\n- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).\n- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).\n- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).\n- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).\n- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45003: Don\u0027t evict inode under the inode lru traversing context (bsc#1230245).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).\n- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).\n- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).\n- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).\n- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).\n- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: tegra: Fix CBB error during probe() (git-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- Drop soundwire patch that caused a regression (bsc#1230350)\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- Move fixes into sorted section (bsc#1230119)\n- Move s390 kabi patch into the kabi section\n- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).\n- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).\n- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \u0027dra7xx-pcie-main\u0027 IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).\n- Revert \u0027Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE\u0027 (git-fixes).\n- Revert \u0027PCI: Extend ACS configurability (bsc#1228090).\u0027 (bsc#1229019)\n- Revert \u0027drm/amdgpu: align pp_power_profile_mode with kernel docs\u0027 (stable-fixes).\n- Revert \u0027media: tuners: fix error return code of hybrid_tuner_request_state()\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027 (bsc#1230413)\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027 (bsc#1230413)\n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027 (bsc#1230413)\n- Split kabi part of dm_blk_ioctl-implement-path-failover-for-SG_IO.patch\n- Squashfs: sanity check symbolic link size (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: bcm: Remove proc entry when dev is unregistered (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: Release irq on error in m_can_open (git-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).\n- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).\n- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).\n- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).\n- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).\n- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).\n- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- driver: iio: add missing checks on iio_info\u0027s callback access (stable-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing (stable-fixes).\n- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).\n- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check BIOS images before it is used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check gpio_id before used as array index (stable-fixes).\n- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).\n- drm/amd/display: Check msg_id before processing transcation (stable-fixes).\n- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).\n- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).\n- drm/amd/display: Ensure array index tg_inst won\u0027t be -1 (stable-fixes).\n- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).\n- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).\n- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).\n- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).\n- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).\n- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).\n- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amd/display: Spinlock before reading event (stable-fixes).\n- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).\n- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).\n- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).\n- drm/amd/pm: Fix negative array index read (stable-fixes).\n- drm/amd/pm: check negtive return for table entries (stable-fixes).\n- drm/amd/pm: check specific index for aldebaran (stable-fixes).\n- drm/amd/pm: check specific index for smu13 (stable-fixes).\n- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).\n- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).\n- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).\n- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).\n- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).\n- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).\n- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).\n- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).\n- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).\n- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).\n- drm/amdgpu: fix dereference after null check (stable-fixes).\n- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix overflowed array index read warning (stable-fixes).\n- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).\n- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).\n- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).\n- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).\n- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).\n- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).\n- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).\n- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).\n- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).\n- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).\n- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).\n- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).\n- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/meson: plane: Add error handling (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).\n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- fuse: fix memory leak in fuse_create_open (bsc#1230124).\n- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).\n- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).\n- gpio: modepin: Enable module autoloading (git-fixes).\n- gpio: rockchip: fix OF node leak in probe() (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- iio: adc: ad7124: fix chip ID mismatch (git-fixes).\n- iio: adc: ad7124: fix config comparison (git-fixes).\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).\n- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipmi:ssif: Improve detecting during probing (bsc#1228771) Move patch into the sorted section.\n- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)\n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- kABI: Split kABI out of \u0027io_uring/kbuf: get rid of bl-\u003eis_ready\u0027\n- kABI: Split kABI out of \u0027io_uring: Re-add dummy_ubuf for kABI purposes\u0027\n- kABI: Split kABI out of io_uring/kbuf: protect io_buffer_list teardown with a reference\n- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- misc: fastrpc: Fix double free of \u0027buf\u0027 in error path (git-fixes).\n- mmc: core: apply SD quirks earlier during probe (git-fixes).\n- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).\n- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).\n- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup (git-fixes).\n- net: phy: Fix missing of_node_put() for leds (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nilfs2: fix state management in error path of log writing function (git-fixes).\n- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).\n- nouveau: fix the fwsec sb verification register (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).\n- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \u0027/tmp/perf-$PID.map\u0027 files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).\n- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- usbip: Do not submit special requests twice (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- usbnet: modern method to get random MAC (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath11k: initialize \u0027ret\u0027 in ath11k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).\n- wifi: cfg80211: restrict operation during radar detection (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).\n- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).\n- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).\n- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3551,SUSE-SLE-Module-Public-Cloud-15-SP6-2024-3551,openSUSE-SLE-15.6-2024-3551",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3551-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3551-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243551-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3551-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-October/037163.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1183045",
"url": "https://bugzilla.suse.com/1183045"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221527",
"url": "https://bugzilla.suse.com/1221527"
},
{
"category": "self",
"summary": "SUSE Bug 1221610",
"url": "https://bugzilla.suse.com/1221610"
},
{
"category": "self",
"summary": "SUSE Bug 1221650",
"url": "https://bugzilla.suse.com/1221650"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226846",
"url": "https://bugzilla.suse.com/1226846"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227726",
"url": "https://bugzilla.suse.com/1227726"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229001",
"url": "https://bugzilla.suse.com/1229001"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229334",
"url": "https://bugzilla.suse.com/1229334"
},
{
"category": "self",
"summary": "SUSE Bug 1229362",
"url": "https://bugzilla.suse.com/1229362"
},
{
"category": "self",
"summary": "SUSE Bug 1229363",
"url": "https://bugzilla.suse.com/1229363"
},
{
"category": "self",
"summary": "SUSE Bug 1229364",
"url": "https://bugzilla.suse.com/1229364"
},
{
"category": "self",
"summary": "SUSE Bug 1229371",
"url": "https://bugzilla.suse.com/1229371"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229389",
"url": "https://bugzilla.suse.com/1229389"
},
{
"category": "self",
"summary": "SUSE Bug 1229394",
"url": "https://bugzilla.suse.com/1229394"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229753",
"url": "https://bugzilla.suse.com/1229753"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229810",
"url": "https://bugzilla.suse.com/1229810"
},
{
"category": "self",
"summary": "SUSE Bug 1229899",
"url": "https://bugzilla.suse.com/1229899"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230123",
"url": "https://bugzilla.suse.com/1230123"
},
{
"category": "self",
"summary": "SUSE Bug 1230124",
"url": "https://bugzilla.suse.com/1230124"
},
{
"category": "self",
"summary": "SUSE Bug 1230125",
"url": "https://bugzilla.suse.com/1230125"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230171",
"url": "https://bugzilla.suse.com/1230171"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230180",
"url": "https://bugzilla.suse.com/1230180"
},
{
"category": "self",
"summary": "SUSE Bug 1230181",
"url": "https://bugzilla.suse.com/1230181"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230245",
"url": "https://bugzilla.suse.com/1230245"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230350",
"url": "https://bugzilla.suse.com/1230350"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE Bug 1231182",
"url": "https://bugzilla.suse.com/1231182"
},
{
"category": "self",
"summary": "SUSE Bug 1231183",
"url": "https://bugzilla.suse.com/1231183"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52610 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26640 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42294 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42304 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42305 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42306 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-10-08T15:03:16Z",
"generator": {
"date": "2024-10-08T15:03:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3551-1",
"initial_release_date": "2024-10-08T15:03:16Z",
"revision_history": [
{
"date": "2024-10-08T15:03:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"product": {
"name": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"product_id": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"product": {
"name": "kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"product_id": "kernel-source-azure-6.4.0-150600.8.14.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-extra-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-optional-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"product_id": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.14.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.14.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.14.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150600.8.14.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix skb leak and crash on ooo frags\n\nact_ct adds skb-\u003eusers before defragmentation. If frags arrive in order,\nthe last frag\u0027s reference is reset in:\n\n inet_frag_reasm_prepare\n skb_morph\n\nwhich is not straightforward.\n\nHowever when frags arrive out of order, nobody unref the last frag, and\nall frags are leaked. The situation is even worse, as initiating packet\ncapture can lead to a crash[0] when skb has been cloned and shared at the\nsame time.\n\nFix the issue by removing skb_get() before defragmentation. act_ct\nreturns TC_ACT_CONSUMED when defrag failed or in progress.\n\n[0]:\n[ 843.804823] ------------[ cut here ]------------\n[ 843.809659] kernel BUG at net/core/skbuff.c:2091!\n[ 843.814516] invalid opcode: 0000 [#1] PREEMPT SMP\n[ 843.819296] CPU: 7 PID: 0 Comm: swapper/7 Kdump: loaded Tainted: G S 6.7.0-rc3 #2\n[ 843.824107] Hardware name: XFUSION 1288H V6/BC13MBSBD, BIOS 1.29 11/25/2022\n[ 843.828953] RIP: 0010:pskb_expand_head+0x2ac/0x300\n[ 843.833805] Code: 8b 70 28 48 85 f6 74 82 48 83 c6 08 bf 01 00 00 00 e8 38 bd ff ff 8b 83 c0 00 00 00 48 03 83 c8 00 00 00 e9 62 ff ff ff 0f 0b \u003c0f\u003e 0b e8 8d d0 ff ff e9 b3 fd ff ff 81 7c 24 14 40 01 00 00 4c 89\n[ 843.843698] RSP: 0018:ffffc9000cce07c0 EFLAGS: 00010202\n[ 843.848524] RAX: 0000000000000002 RBX: ffff88811a211d00 RCX: 0000000000000820\n[ 843.853299] RDX: 0000000000000640 RSI: 0000000000000000 RDI: ffff88811a211d00\n[ 843.857974] RBP: ffff888127d39518 R08: 00000000bee97314 R09: 0000000000000000\n[ 843.862584] R10: 0000000000000000 R11: ffff8881109f0000 R12: 0000000000000880\n[ 843.867147] R13: ffff888127d39580 R14: 0000000000000640 R15: ffff888170f7b900\n[ 843.871680] FS: 0000000000000000(0000) GS:ffff889ffffc0000(0000) knlGS:0000000000000000\n[ 843.876242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 843.880778] CR2: 00007fa42affcfb8 CR3: 000000011433a002 CR4: 0000000000770ef0\n[ 843.885336] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 843.889809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 843.894229] PKRU: 55555554\n[ 843.898539] Call Trace:\n[ 843.902772] \u003cIRQ\u003e\n[ 843.906922] ? __die_body+0x1e/0x60\n[ 843.911032] ? die+0x3c/0x60\n[ 843.915037] ? do_trap+0xe2/0x110\n[ 843.918911] ? pskb_expand_head+0x2ac/0x300\n[ 843.922687] ? do_error_trap+0x65/0x80\n[ 843.926342] ? pskb_expand_head+0x2ac/0x300\n[ 843.929905] ? exc_invalid_op+0x50/0x60\n[ 843.933398] ? pskb_expand_head+0x2ac/0x300\n[ 843.936835] ? asm_exc_invalid_op+0x1a/0x20\n[ 843.940226] ? pskb_expand_head+0x2ac/0x300\n[ 843.943580] inet_frag_reasm_prepare+0xd1/0x240\n[ 843.946904] ip_defrag+0x5d4/0x870\n[ 843.950132] nf_ct_handle_fragments+0xec/0x130 [nf_conntrack]\n[ 843.953334] tcf_ct_act+0x252/0xd90 [act_ct]\n[ 843.956473] ? tcf_mirred_act+0x516/0x5a0 [act_mirred]\n[ 843.959657] tcf_action_exec+0xa1/0x160\n[ 843.962823] fl_classify+0x1db/0x1f0 [cls_flower]\n[ 843.966010] ? skb_clone+0x53/0xc0\n[ 843.969173] tcf_classify+0x24d/0x420\n[ 843.972333] tc_run+0x8f/0xf0\n[ 843.975465] __netif_receive_skb_core+0x67a/0x1080\n[ 843.978634] ? dev_gro_receive+0x249/0x730\n[ 843.981759] __netif_receive_skb_list_core+0x12d/0x260\n[ 843.984869] netif_receive_skb_list_internal+0x1cb/0x2f0\n[ 843.987957] ? mlx5e_handle_rx_cqe_mpwrq_rep+0xfa/0x1a0 [mlx5_core]\n[ 843.991170] napi_complete_done+0x72/0x1a0\n[ 843.994305] mlx5e_napi_poll+0x28c/0x6d0 [mlx5_core]\n[ 843.997501] __napi_poll+0x25/0x1b0\n[ 844.000627] net_rx_action+0x256/0x330\n[ 844.003705] __do_softirq+0xb3/0x29b\n[ 844.006718] irq_exit_rcu+0x9e/0xc0\n[ 844.009672] common_interrupt+0x86/0xa0\n[ 844.012537] \u003c/IRQ\u003e\n[ 844.015285] \u003cTASK\u003e\n[ 844.017937] asm_common_interrupt+0x26/0x40\n[ 844.020591] RIP: 0010:acpi_safe_halt+0x1b/0x20\n[ 844.023247] Code: ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 65 48 8b 04 25 00 18 03 00 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 81 d0 44 00 fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52610",
"url": "https://www.suse.com/security/cve/CVE-2023-52610"
},
{
"category": "external",
"summary": "SUSE Bug 1221610 for CVE-2023-52610",
"url": "https://bugzilla.suse.com/1221610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26640"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: add sanity checks to rx zerocopy\n\nTCP rx zerocopy intent is to map pages initially allocated\nfrom NIC drivers, not pages owned by a fs.\n\nThis patch adds to can_map_frag() these additional checks:\n\n- Page must not be a compound one.\n- page-\u003emapping must be NULL.\n\nThis fixes the panic reported by ZhangPeng.\n\nsyzbot was able to loopback packets built with sendfile(),\nmapping pages owned by an ext4 file to TCP rx zerocopy.\n\nr3 = socket$inet_tcp(0x2, 0x1, 0x0)\nmmap(\u0026(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)\nr4 = socket$inet_tcp(0x2, 0x1, 0x0)\nbind$inet(r4, \u0026(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10)\nconnect$inet(r4, \u0026(0x7f00000006c0)={0x2, 0x4e24, @empty}, 0x10)\nr5 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)\nfallocate(r5, 0x0, 0x0, 0x85b8)\nsendfile(r4, r5, 0x0, 0x8ba0)\ngetsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23,\n \u0026(0x7f00000001c0)={\u0026(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0,\n 0x0, 0x0, 0x0, 0x0}, \u0026(0x7f0000000440)=0x40)\nr6 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26640",
"url": "https://www.suse.com/security/cve/CVE-2024-26640"
},
{
"category": "external",
"summary": "SUSE Bug 1221650 for CVE-2024-26640",
"url": "https://bugzilla.suse.com/1221650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26640"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data races in unix_release_sock/unix_stream_sendmsg\n\nA data-race condition has been identified in af_unix. In one data path,\nthe write function unix_release_sock() atomically writes to\nsk-\u003esk_shutdown using WRITE_ONCE. However, on the reader side,\nunix_stream_sendmsg() does not read it atomically. Consequently, this\nissue is causing the following KCSAN splat to occur:\n\n\tBUG: KCSAN: data-race in unix_release_sock / unix_stream_sendmsg\n\n\twrite (marked) to 0xffff88867256ddbb of 1 bytes by task 7270 on cpu 28:\n\tunix_release_sock (net/unix/af_unix.c:640)\n\tunix_release (net/unix/af_unix.c:1050)\n\tsock_close (net/socket.c:659 net/socket.c:1421)\n\t__fput (fs/file_table.c:422)\n\t__fput_sync (fs/file_table.c:508)\n\t__se_sys_close (fs/open.c:1559 fs/open.c:1541)\n\t__x64_sys_close (fs/open.c:1541)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tread to 0xffff88867256ddbb of 1 bytes by task 989 on cpu 14:\n\tunix_stream_sendmsg (net/unix/af_unix.c:2273)\n\t__sock_sendmsg (net/socket.c:730 net/socket.c:745)\n\t____sys_sendmsg (net/socket.c:2584)\n\t__sys_sendmmsg (net/socket.c:2638 net/socket.c:2724)\n\t__x64_sys_sendmmsg (net/socket.c:2753 net/socket.c:2750 net/socket.c:2750)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tvalue changed: 0x01 -\u003e 0x03\n\nThe line numbers are related to commit dd5a440a31fa (\"Linux 6.9-rc7\").\n\nCommit e1d09c2c2f57 (\"af_unix: Fix data races around sk-\u003esk_shutdown.\")\naddressed a comparable issue in the past regarding sk-\u003esk_shutdown.\nHowever, it overlooked resolving this particular data path.\nThis patch only offending unix_stream_sendmsg() function, since the\nother reads seem to be protected by unix_state_lock() as discussed in",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38596",
"url": "https://www.suse.com/security/cve/CVE-2024-38596"
},
{
"category": "external",
"summary": "SUSE Bug 1226846 for CVE-2024-38596",
"url": "https://bugzilla.suse.com/1226846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38596"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray\n\nPatch series \"mm/filemap: Limit page cache size to that supported by\nxarray\", v2.\n\nCurrently, xarray can\u0027t support arbitrary page cache size. More details\ncan be found from the WARN_ON() statement in xas_split_alloc(). In our\ntest whose code is attached below, we hit the WARN_ON() on ARM64 system\nwhere the base page size is 64KB and huge page size is 512MB. The issue\nwas reported long time ago and some discussions on it can be found here\n[1].\n\n[1] https://www.spinics.net/lists/linux-xfs/msg75404.html\n\nIn order to fix the issue, we need to adjust MAX_PAGECACHE_ORDER to one\nsupported by xarray and avoid PMD-sized page cache if needed. The code\nchanges are suggested by David Hildenbrand.\n\nPATCH[1] adjusts MAX_PAGECACHE_ORDER to that supported by xarray\nPATCH[2-3] avoids PMD-sized page cache in the synchronous readahead path\nPATCH[4] avoids PMD-sized page cache for shmem files if needed\n\nTest program\n============\n# cat test.c\n#define _GNU_SOURCE\n#include \u003cstdio.h\u003e\n#include \u003cstdlib.h\u003e\n#include \u003cunistd.h\u003e\n#include \u003cstring.h\u003e\n#include \u003cfcntl.h\u003e\n#include \u003cerrno.h\u003e\n#include \u003csys/syscall.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define TEST_XFS_FILENAME\t\"/tmp/data\"\n#define TEST_SHMEM_FILENAME\t\"/dev/shm/data\"\n#define TEST_MEM_SIZE\t\t0x20000000\n\nint main(int argc, char **argv)\n{\n\tconst char *filename;\n\tint fd = 0;\n\tvoid *buf = (void *)-1, *p;\n\tint pgsize = getpagesize();\n\tint ret;\n\n\tif (pgsize != 0x10000) {\n\t\tfprintf(stderr, \"64KB base page size is required\\n\");\n\t\treturn -EPERM;\n\t}\n\n\tsystem(\"echo force \u003e /sys/kernel/mm/transparent_hugepage/shmem_enabled\");\n\tsystem(\"rm -fr /tmp/data\");\n\tsystem(\"rm -fr /dev/shm/data\");\n\tsystem(\"echo 1 \u003e /proc/sys/vm/drop_caches\");\n\n\t/* Open xfs or shmem file */\n\tfilename = TEST_XFS_FILENAME;\n\tif (argc \u003e 1 \u0026\u0026 !strcmp(argv[1], \"shmem\"))\n\t\tfilename = TEST_SHMEM_FILENAME;\n\n\tfd = open(filename, O_CREAT | O_RDWR | O_TRUNC);\n\tif (fd \u003c 0) {\n\t\tfprintf(stderr, \"Unable to open \u003c%s\u003e\\n\", filename);\n\t\treturn -EIO;\n\t}\n\n\t/* Extend file size */\n\tret = ftruncate(fd, TEST_MEM_SIZE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to ftruncate()\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Create VMA */\n\tbuf = mmap(NULL, TEST_MEM_SIZE,\n\t\t PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);\n\tif (buf == (void *)-1) {\n\t\tfprintf(stderr, \"Unable to mmap \u003c%s\u003e\\n\", filename);\n\t\tgoto cleanup;\n\t}\n\n\tfprintf(stdout, \"mapped buffer at 0x%p\\n\", buf);\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_HUGEPAGE);\n if (ret) {\n\t\tfprintf(stderr, \"Unable to madvise(MADV_HUGEPAGE)\\n\");\n\t\tgoto cleanup;\n\t}\n\n\t/* Populate VMA */\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_POPULATE_WRITE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to madvise(MADV_POPULATE_WRITE)\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Punch the file to enforce xarray split */\n\tret = fallocate(fd, FALLOC_FL_KEEP_SIZE | FALLOC_FL_PUNCH_HOLE,\n \t\tTEST_MEM_SIZE - pgsize, pgsize);\n\tif (ret)\n\t\tfprintf(stderr, \"Error %d to fallocate()\\n\", ret);\n\ncleanup:\n\tif (buf != (void *)-1)\n\t\tmunmap(buf, TEST_MEM_SIZE);\n\tif (fd \u003e 0)\n\t\tclose(fd);\n\n\treturn 0;\n}\n\n# gcc test.c -o test\n# cat /proc/1/smaps | grep KernelPageSize | head -n 1\nKernelPageSize: 64 kB\n# ./test shmem\n :\n------------[ cut here ]------------\nWARNING: CPU: 17 PID: 5253 at lib/xarray.c:1025 xas_split_alloc+0xf8/0x128\nModules linked in: nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib \\\nnft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct \\\nnft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 \\\nip_set nf_tables rfkill nfnetlink vfat fat virtio_balloon \\\ndrm fuse xfs libcrc32c crct10dif_ce ghash_ce sha2_ce sha256_arm64 \\\nvirtio_net sha1_ce net_failover failover virtio_console virtio_blk \\\ndimlib virtio_mmio\nCPU: 17 PID: 5253 Comm: test Kdump: loaded Tainted: G W 6.10.0-rc5-gavin+ #12\nHardware name: QEMU KVM Virtual Machine, BIOS edk2-20240524-1.el9 05/24/2024\npstate: 83400005 (Nzcv daif +PAN -UAO +TC\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42243",
"url": "https://www.suse.com/security/cve/CVE-2024-42243"
},
{
"category": "external",
"summary": "SUSE Bug 1229001 for CVE-2024-42243",
"url": "https://bugzilla.suse.com/1229001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42243"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-42265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of -\u003efd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than -\u003emax_fds;\nhowever, misprediction might end up with\n tofree = fdt-\u003efd[fd];\nbeing speculatively executed. That\u0027s wrong for the same reasons\nwhy it\u0027s wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt-\u003emax_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42265",
"url": "https://www.suse.com/security/cve/CVE-2024-42265"
},
{
"category": "external",
"summary": "SUSE Bug 1229334 for CVE-2024-42265",
"url": "https://bugzilla.suse.com/1229334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42265"
},
{
"cve": "CVE-2024-42294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix deadlock between sd_remove \u0026 sd_release\n\nOur test report the following hung task:\n\n[ 2538.459400] INFO: task \"kworker/0:0\":7 blocked for more than 188 seconds.\n[ 2538.459427] Call trace:\n[ 2538.459430] __switch_to+0x174/0x338\n[ 2538.459436] __schedule+0x628/0x9c4\n[ 2538.459442] schedule+0x7c/0xe8\n[ 2538.459447] schedule_preempt_disabled+0x24/0x40\n[ 2538.459453] __mutex_lock+0x3ec/0xf04\n[ 2538.459456] __mutex_lock_slowpath+0x14/0x24\n[ 2538.459459] mutex_lock+0x30/0xd8\n[ 2538.459462] del_gendisk+0xdc/0x350\n[ 2538.459466] sd_remove+0x30/0x60\n[ 2538.459470] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459474] device_release_driver+0x18/0x28\n[ 2538.459478] bus_remove_device+0x15c/0x174\n[ 2538.459483] device_del+0x1d0/0x358\n[ 2538.459488] __scsi_remove_device+0xa8/0x198\n[ 2538.459493] scsi_forget_host+0x50/0x70\n[ 2538.459497] scsi_remove_host+0x80/0x180\n[ 2538.459502] usb_stor_disconnect+0x68/0xf4\n[ 2538.459506] usb_unbind_interface+0xd4/0x280\n[ 2538.459510] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459514] device_release_driver+0x18/0x28\n[ 2538.459518] bus_remove_device+0x15c/0x174\n[ 2538.459523] device_del+0x1d0/0x358\n[ 2538.459528] usb_disable_device+0x84/0x194\n[ 2538.459532] usb_disconnect+0xec/0x300\n[ 2538.459537] hub_event+0xb80/0x1870\n[ 2538.459541] process_scheduled_works+0x248/0x4dc\n[ 2538.459545] worker_thread+0x244/0x334\n[ 2538.459549] kthread+0x114/0x1bc\n\n[ 2538.461001] INFO: task \"fsck.\":15415 blocked for more than 188 seconds.\n[ 2538.461014] Call trace:\n[ 2538.461016] __switch_to+0x174/0x338\n[ 2538.461021] __schedule+0x628/0x9c4\n[ 2538.461025] schedule+0x7c/0xe8\n[ 2538.461030] blk_queue_enter+0xc4/0x160\n[ 2538.461034] blk_mq_alloc_request+0x120/0x1d4\n[ 2538.461037] scsi_execute_cmd+0x7c/0x23c\n[ 2538.461040] ioctl_internal_command+0x5c/0x164\n[ 2538.461046] scsi_set_medium_removal+0x5c/0xb0\n[ 2538.461051] sd_release+0x50/0x94\n[ 2538.461054] blkdev_put+0x190/0x28c\n[ 2538.461058] blkdev_release+0x28/0x40\n[ 2538.461063] __fput+0xf8/0x2a8\n[ 2538.461066] __fput_sync+0x28/0x5c\n[ 2538.461070] __arm64_sys_close+0x84/0xe8\n[ 2538.461073] invoke_syscall+0x58/0x114\n[ 2538.461078] el0_svc_common+0xac/0xe0\n[ 2538.461082] do_el0_svc+0x1c/0x28\n[ 2538.461087] el0_svc+0x38/0x68\n[ 2538.461090] el0t_64_sync_handler+0x68/0xbc\n[ 2538.461093] el0t_64_sync+0x1a8/0x1ac\n\n T1:\t\t\t\tT2:\n sd_remove\n del_gendisk\n __blk_mark_disk_dead\n blk_freeze_queue_start\n ++q-\u003emq_freeze_depth\n \t\t\t\tbdev_release\n \t\t\t\tmutex_lock(\u0026disk-\u003eopen_mutex)\n \t\t\t\tsd_release\n \t\t\t\tscsi_execute_cmd\n \t\t\t\tblk_queue_enter\n \t\t\t\twait_event(!q-\u003emq_freeze_depth)\n mutex_lock(\u0026disk-\u003eopen_mutex)\n\nSCSI does not set GD_OWNS_QUEUE, so QUEUE_FLAG_DYING is not set in\nthis scenario. This is a classic ABBA deadlock. To fix the deadlock,\nmake sure we don\u0027t try to acquire disk-\u003eopen_mutex after freezing\nthe queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42294",
"url": "https://www.suse.com/security/cve/CVE-2024-42294"
},
{
"category": "external",
"summary": "SUSE Bug 1229371 for CVE-2024-42294",
"url": "https://bugzilla.suse.com/1229371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42294"
},
{
"cve": "CVE-2024-42304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: make sure the first directory block is not a hole\n\nThe syzbot constructs a directory that has no dirblock but is non-inline,\ni.e. the first directory block is a hole. And no errors are reported when\ncreating files in this directory in the following flow.\n\n ext4_mknod\n ...\n ext4_add_entry\n // Read block 0\n ext4_read_dirblock(dir, block, DIRENT)\n bh = ext4_bread(NULL, inode, block, 0)\n if (!bh \u0026\u0026 (type == INDEX || type == DIRENT_HTREE))\n // The first directory block is a hole\n // But type == DIRENT, so no error is reported.\n\nAfter that, we get a directory block without \u0027.\u0027 and \u0027..\u0027 but with a valid\ndentry. This may cause some code that relies on dot or dotdot (such as\nmake_indexed_dir()) to crash.\n\nTherefore when ext4_read_dirblock() finds that the first directory block\nis a hole report that the filesystem is corrupted and return an error to\navoid loading corrupted data from disk causing something bad.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42304",
"url": "https://www.suse.com/security/cve/CVE-2024-42304"
},
{
"category": "external",
"summary": "SUSE Bug 1229364 for CVE-2024-42304",
"url": "https://bugzilla.suse.com/1229364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42304"
},
{
"cve": "CVE-2024-42305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check dot and dotdot of dx_root before making dir indexed\n\nSyzbot reports a issue as follows:\n============================================\nBUG: unable to handle page fault for address: ffffed11022e24fe\nPGD 23ffee067 P4D 23ffee067 PUD 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 5079 Comm: syz-executor306 Not tainted 6.10.0-rc5-g55027e689933 #0\nCall Trace:\n \u003cTASK\u003e\n make_indexed_dir+0xdaf/0x13c0 fs/ext4/namei.c:2341\n ext4_add_entry+0x222a/0x25d0 fs/ext4/namei.c:2451\n ext4_rename fs/ext4/namei.c:3936 [inline]\n ext4_rename2+0x26e5/0x4370 fs/ext4/namei.c:4214\n[...]\n============================================\n\nThe immediate cause of this problem is that there is only one valid dentry\nfor the block to be split during do_split, so split==0 results in out of\nbounds accesses to the map triggering the issue.\n\n do_split\n unsigned split\n dx_make_map\n count = 1\n split = count/2 = 0;\n continued = hash2 == map[split - 1].hash;\n ---\u003e map[4294967295]\n\nThe maximum length of a filename is 255 and the minimum block size is 1024,\nso it is always guaranteed that the number of entries is greater than or\nequal to 2 when do_split() is called.\n\nBut syzbot\u0027s crafted image has no dot and dotdot in dir, and the dentry\ndistribution in dirblock is as follows:\n\n bus dentry1 hole dentry2 free\n|xx--|xx-------------|...............|xx-------------|...............|\n0 12 (8+248)=256 268 256 524 (8+256)=264 788 236 1024\n\nSo when renaming dentry1 increases its name_len length by 1, neither hole\nnor free is sufficient to hold the new dentry, and make_indexed_dir() is\ncalled.\n\nIn make_indexed_dir() it is assumed that the first two entries of the\ndirblock must be dot and dotdot, so bus and dentry1 are left in dx_root\nbecause they are treated as dot and dotdot, and only dentry2 is moved\nto the new leaf block. That\u0027s why count is equal to 1.\n\nTherefore add the ext4_check_dx_root() helper function to add more sanity\nchecks to dot and dotdot before starting the conversion to avoid the above\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42305",
"url": "https://www.suse.com/security/cve/CVE-2024-42305"
},
{
"category": "external",
"summary": "SUSE Bug 1229363 for CVE-2024-42305",
"url": "https://bugzilla.suse.com/1229363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42305"
},
{
"cve": "CVE-2024-42306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42306",
"url": "https://www.suse.com/security/cve/CVE-2024-42306"
},
{
"category": "external",
"summary": "SUSE Bug 1229362 for CVE-2024-42306",
"url": "https://bugzilla.suse.com/1229362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-42306"
},
{
"cve": "CVE-2024-43828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix infinite loop when replaying fast_commit\n\nWhen doing fast_commit replay an infinite loop may occur due to an\nuninitialized extent_status struct. ext4_ext_determine_insert_hole() does\nnot detect the replay and calls ext4_es_find_extent_range(), which will\nreturn immediately without initializing the \u0027es\u0027 variable.\n\nBecause \u0027es\u0027 contains garbage, an integer overflow may happen causing an\ninfinite loop in this function, easily reproducible using fstest generic/039.\n\nThis commit fixes this issue by unconditionally initializing the structure\nin function ext4_es_find_extent_range().\n\nThanks to Zhang Yi, for figuring out the real problem!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43828",
"url": "https://www.suse.com/security/cve/CVE-2024-43828"
},
{
"category": "external",
"summary": "SUSE Bug 1229394 for CVE-2024-43828",
"url": "https://bugzilla.suse.com/1229394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43828"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix bogus checksum computation in udf_rename()\n\nSyzbot reports uninitialized memory access in udf_rename() when updating\nchecksum of \u0027..\u0027 directory entry of a moved directory. This is indeed\ntrue as we pass on-stack diriter.fi to the udf_update_tag() and because\nthat has only struct fileIdentDesc included in it and not the impUse or\nname fields, the checksumming function is going to checksum random stack\ncontents beyond the end of the structure. This is actually harmless\nbecause the following udf_fiiter_write_fi() will recompute the checksum\nfrom on-disk buffers where everything is properly included. So all that\nis needed is just removing the bogus calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43845",
"url": "https://www.suse.com/security/cve/CVE-2024-43845"
},
{
"category": "external",
"summary": "SUSE Bug 1229389 for CVE-2024-43845",
"url": "https://bugzilla.suse.com/1229389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43845"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43898"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43898",
"url": "https://www.suse.com/security/cve/CVE-2024-43898"
},
{
"category": "external",
"summary": "SUSE Bug 1229753 for CVE-2024-43898",
"url": "https://bugzilla.suse.com/1229753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43898"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Fix null-ptr-deref in reuseport_add_sock().\n\nsyzbot reported a null-ptr-deref while accessing sk2-\u003esk_reuseport_cb in\nreuseport_add_sock(). [0]\n\nThe repro first creates a listener with SO_REUSEPORT. Then, it creates\nanother listener on the same port and concurrently closes the first\nlistener.\n\nThe second listen() calls reuseport_add_sock() with the first listener as\nsk2, where sk2-\u003esk_reuseport_cb is not expected to be cleared concurrently,\nbut the close() does clear it by reuseport_detach_sock().\n\nThe problem is SCTP does not properly synchronise reuseport_alloc(),\nreuseport_add_sock(), and reuseport_detach_sock().\n\nThe caller of reuseport_alloc() and reuseport_{add,detach}_sock() must\nprovide synchronisation for sockets that are classified into the same\nreuseport group.\n\nOtherwise, such sockets form multiple identical reuseport groups, and\nall groups except one would be silently dead.\n\n 1. Two sockets call listen() concurrently\n 2. No socket in the same group found in sctp_ep_hashtable[]\n 3. Two sockets call reuseport_alloc() and form two reuseport groups\n 4. Only one group hit first in __sctp_rcv_lookup_endpoint() receives\n incoming packets\n\nAlso, the reported null-ptr-deref could occur.\n\nTCP/UDP guarantees that would not happen by holding the hash bucket lock.\n\nLet\u0027s apply the locking strategy to __sctp_hash_endpoint() and\n__sctp_unhash_endpoint().\n\n[0]:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\nCPU: 1 UID: 0 PID: 10230 Comm: syz-executor119 Not tainted 6.10.0-syzkaller-12585-g301927d2d2eb #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nRIP: 0010:reuseport_add_sock+0x27e/0x5e0 net/core/sock_reuseport.c:350\nCode: 00 0f b7 5d 00 bf 01 00 00 00 89 de e8 1b a4 ff f7 83 fb 01 0f 85 a3 01 00 00 e8 6d a0 ff f7 49 8d 7e 12 48 89 f8 48 c1 e8 03 \u003c42\u003e 0f b6 04 28 84 c0 0f 85 4b 02 00 00 41 0f b7 5e 12 49 8d 7e 14\nRSP: 0018:ffffc9000b947c98 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff8880252ddf98 RCX: ffff888079478000\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000012\nRBP: 0000000000000001 R08: ffffffff8993e18d R09: 1ffffffff1fef385\nR10: dffffc0000000000 R11: fffffbfff1fef386 R12: ffff8880252ddac0\nR13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000\nFS: 00007f24e45b96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffcced5f7b8 CR3: 00000000241be000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __sctp_hash_endpoint net/sctp/input.c:762 [inline]\n sctp_hash_endpoint+0x52a/0x600 net/sctp/input.c:790\n sctp_listen_start net/sctp/socket.c:8570 [inline]\n sctp_inet_listen+0x767/0xa20 net/sctp/socket.c:8625\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]\n __se_sys_listen net/socket.c:1900 [inline]\n __x64_sys_listen+0x5a/0x70 net/socket.c:1900\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f24e46039b9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f24e45b9228 EFLAGS: 00000246 ORIG_RAX: 0000000000000032\nRAX: ffffffffffffffda RBX: 00007f24e468e428 RCX: 00007f24e46039b9\nRDX: 00007f24e46039b9 RSI: 0000000000000003 RDI: 0000000000000004\nRBP: 00007f24e468e420 R08: 00007f24e45b96c0 R09: 00007f24e45b96c0\nR10: 00007f24e45b96c0 R11: 0000000000000246 R12: 00007f24e468e42c\nR13:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44935",
"url": "https://www.suse.com/security/cve/CVE-2024-44935"
},
{
"category": "external",
"summary": "SUSE Bug 1229810 for CVE-2024-44935",
"url": "https://bugzilla.suse.com/1229810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44935"
},
{
"cve": "CVE-2024-44944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use helper function to calculate expect ID\n\nDelete expectation path is missing a call to the nf_expect_get_id()\nhelper function to calculate the expectation ID, otherwise LSB of the\nexpectation object address is leaked to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44944",
"url": "https://www.suse.com/security/cve/CVE-2024-44944"
},
{
"category": "external",
"summary": "SUSE Bug 1229899 for CVE-2024-44944",
"url": "https://bugzilla.suse.com/1229899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44944"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix invalid FIFO access with special register set\n\nWhen enabling access to the special register set, Receiver time-out and\nRHR interrupts can happen. In this case, the IRQ handler will try to read\nfrom the FIFO thru the RHR register at address 0x00, but address 0x00 is\nmapped to DLL register, resulting in erroneous FIFO reading.\n\nCall graph example:\n sc16is7xx_startup(): entry\n sc16is7xx_ms_proc(): entry\n sc16is7xx_set_termios(): entry\n sc16is7xx_set_baud(): DLH/DLL = $009C --\u003e access special register set\n sc16is7xx_port_irq() entry --\u003e IIR is 0x0C\n sc16is7xx_handle_rx() entry\n sc16is7xx_fifo_read(): --\u003e unable to access FIFO (RHR) because it is\n mapped to DLL (LCR=LCR_CONF_MODE_A)\n sc16is7xx_set_baud(): exit --\u003e Restore access to general register set\n\nFix the problem by claiming the efr_lock mutex when accessing the Special\nregister set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44950",
"url": "https://www.suse.com/security/cve/CVE-2024-44950"
},
{
"category": "external",
"summary": "SUSE Bug 1230180 for CVE-2024-44950",
"url": "https://bugzilla.suse.com/1230180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44950"
},
{
"cve": "CVE-2024-44951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix TX fifo corruption\n\nSometimes, when a packet is received on channel A at almost the same time\nas a packet is about to be transmitted on channel B, we observe with a\nlogic analyzer that the received packet on channel A is transmitted on\nchannel B. In other words, the Tx buffer data on channel B is corrupted\nwith data from channel A.\n\nThe problem appeared since commit 4409df5866b7 (\"serial: sc16is7xx: change\nEFR lock to operate on each channels\"), which changed the EFR locking to\noperate on each channel instead of chip-wise.\n\nThis commit has introduced a regression, because the EFR lock is used not\nonly to protect the EFR registers access, but also, in a very obscure and\nundocumented way, to protect access to the data buffer, which is shared by\nthe Tx and Rx handlers, but also by each channel of the IC.\n\nFix this regression first by switching to kfifo_out_linear_ptr() in\nsc16is7xx_handle_tx() to eliminate the need for a shared Rx/Tx buffer.\n\nSecondly, replace the chip-wise Rx buffer with a separate Rx buffer for\neach channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44951",
"url": "https://www.suse.com/security/cve/CVE-2024-44951"
},
{
"category": "external",
"summary": "SUSE Bug 1230181 for CVE-2024-44951",
"url": "https://bugzilla.suse.com/1230181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44951"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UAF in ip6_xmit()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand the associated dst/idev could also have been freed.\n\nWe must use rcu_read_lock() to prevent a possible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44985",
"url": "https://www.suse.com/security/cve/CVE-2024-44985"
},
{
"category": "external",
"summary": "SUSE Bug 1230206 for CVE-2024-44985",
"url": "https://bugzilla.suse.com/1230206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44985"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can\u0027t dereference \"skb\" after calling vcc-\u003epush() because the skb\nis released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44998",
"url": "https://www.suse.com/security/cve/CVE-2024-44998"
},
{
"category": "external",
"summary": "SUSE Bug 1230171 for CVE-2024-44998",
"url": "https://bugzilla.suse.com/1230171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44998"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: Don\u0027t evict inode under the inode lru traversing context\n\nThe inode reclaiming process(See function prune_icache_sb) collects all\nreclaimable inodes and mark them with I_FREEING flag at first, at that\ntime, other processes will be stuck if they try getting these inodes\n(See function find_inode_fast), then the reclaiming process destroy the\ninodes by function dispose_list(). Some filesystems(eg. ext4 with\nea_inode feature, ubifs with xattr) may do inode lookup in the inode\nevicting callback function, if the inode lookup is operated under the\ninode lru traversing context, deadlock problems may happen.\n\nCase 1: In function ext4_evict_inode(), the ea inode lookup could happen\n if ea_inode feature is enabled, the lookup process will be stuck\n\tunder the evicting context like this:\n\n 1. File A has inode i_reg and an ea inode i_ea\n 2. getfattr(A, xattr_buf) // i_ea is added into lru // lru-\u003ei_ea\n 3. Then, following three processes running like this:\n\n PA PB\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // i_reg is added into lru, lru-\u003ei_ea-\u003ei_reg\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n i_ea-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(i_reg)\n spin_unlock(\u0026i_reg-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file A\n i_reg-\u003enlink = 0\n iput(i_reg) // i_reg-\u003enlink is 0, do evict\n ext4_evict_inode\n ext4_xattr_delete_inode\n ext4_xattr_inode_dec_ref_all\n ext4_xattr_inode_iget\n ext4_iget(i_ea-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(i_ea) ----\u2192 AA deadlock\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026i_ea-\u003ei_state)\n\nCase 2: In deleted inode writing function ubifs_jnl_write_inode(), file\n deleting process holds BASEHD\u0027s wbuf-\u003eio_mutex while getting the\n\txattr inode, which could race with inode reclaiming process(The\n reclaiming process could try locking BASEHD\u0027s wbuf-\u003eio_mutex in\n\tinode evicting function), then an ABBA deadlock problem would\n\thappen as following:\n\n 1. File A has inode ia and a xattr(with inode ixa), regular file B has\n inode ib and a xattr.\n 2. getfattr(A, xattr_buf) // ixa is added into lru // lru-\u003eixa\n 3. Then, following three processes running like this:\n\n PA PB PC\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // ib and ia are added into lru, lru-\u003eixa-\u003eib-\u003eia\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n ixa-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(ib)\n spin_unlock(\u0026ib-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file B\n ib-\u003enlink = 0\n rm file A\n iput(ia)\n ubifs_evict_inode(ia)\n ubifs_jnl_delete_inode(ia)\n ubifs_jnl_write_inode(ia)\n make_reservation(BASEHD) // Lock wbuf-\u003eio_mutex\n ubifs_iget(ixa-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(ixa)\n | iput(ib) // ib-\u003enlink is 0, do evict\n | ubifs_evict_inode\n | ubifs_jnl_delete_inode(ib)\n \u2193 ubifs_jnl_write_inode\n ABBA deadlock \u2190-----make_reservation(BASEHD)\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026ixa-\u003ei_state)\n\nFix the possible deadlock by using new inode state flag I_LRU_ISOLATING\nto pin the inode in memory while inode_lru_isolate(\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45003",
"url": "https://www.suse.com/security/cve/CVE-2024-45003"
},
{
"category": "external",
"summary": "SUSE Bug 1230245 for CVE-2024-45003",
"url": "https://bugzilla.suse.com/1230245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45003"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:cluster-md-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:dlm-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:gfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-extra-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-livepatch-devel-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-azure-optional-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-azure-vdso-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kernel-devel-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-source-azure-6.4.0-150600.8.14.1.noarch",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kernel-syms-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:kselftests-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:ocfs2-kmp-azure-6.4.0-150600.8.14.1.x86_64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.aarch64",
"openSUSE Leap 15.6:reiserfs-kmp-azure-6.4.0-150600.8.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:03:16Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2024:3553-1
Vulnerability from csaf_suse
Published
2024-10-08 15:10
Modified
2024-10-08 15:10
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP6 CoCo kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46727: Fixed NULL pointer dereference in resource_log_pipe_topology_update (bsc#1230707).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- Drop soundwire patch that caused a regression (bsc#1230350)
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- Move fixes into sorted section (bsc#1230119)
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for 'dra7xx-pcie-main' IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- Revert 'media: tuners: fix error return code of hybrid_tuner_request_state()' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section'
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()'
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage'
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage'
- Revert 'PCI: Extend ACS configurability (bsc#1228090).' (bsc#1229019)
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- Squashfs: sanity check symbolic link size (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for '/tmp/perf-$PID.map' files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-2024-3553,SUSE-SLE-Module-Confidential-Computing-15-SP6-2024-3553
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP6 CoCo kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46727: Fixed NULL pointer dereference in resource_log_pipe_topology_update (bsc#1230707).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- Drop soundwire patch that caused a regression (bsc#1230350) \n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipmi:ssif: Improve detecting during probing (bsc#1228771) \n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- Move fixes into sorted section (bsc#1230119)\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \u0027dra7xx-pcie-main\u0027 IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- Revert \u0027media: tuners: fix error return code of hybrid_tuner_request_state()\u0027 (git-fixes).\n- Revert \u0027mm, kmsan: fix infinite recursion due to RCU critical section\u0027 \n- Revert \u0027mm: prevent derefencing NULL ptr in pfn_section_valid()\u0027\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027\n- Revert \u0027mm/sparsemem: fix race in accessing memory_section-\u003eusage\u0027 \n- Revert \u0027PCI: Extend ACS configurability (bsc#1228090).\u0027 (bsc#1229019)\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- Squashfs: sanity check symbolic link size (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \u0027/tmp/perf-$PID.map\u0027 files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3553,SUSE-SLE-Module-Confidential-Computing-15-SP6-2024-3553",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3553-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3553-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243553-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3553-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-October/037161.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229748",
"url": "https://bugzilla.suse.com/1229748"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230212",
"url": "https://bugzilla.suse.com/1230212"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230350",
"url": "https://bugzilla.suse.com/1230350"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230542",
"url": "https://bugzilla.suse.com/1230542"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230707",
"url": "https://bugzilla.suse.com/1230707"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43886 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43886/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44972 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46711 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46711/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-10-08T15:10:23Z",
"generator": {
"date": "2024-10-08T15:10:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3553-1",
"initial_release_date": "2024-10-08T15:10:23Z",
"revision_history": [
{
"date": "2024-10-08T15:10:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"product": {
"name": "kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"product_id": "kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"product": {
"name": "kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"product_id": "kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "cluster-md-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "cluster-md-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "dlm-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "dlm-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "gfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "gfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-extra-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-extra-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-extra-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-optional-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-optional-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-optional-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco-vdso-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco-vdso-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco-vdso-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-livepatch-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-coco_debug-vdso-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-coco_debug-vdso-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-coco_debug-vdso-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "kselftests-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "kselftests-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "ocfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "ocfs2-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product": {
"name": "reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"product_id": "reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-confidential-computing:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch"
},
"product_reference": "kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch"
},
"product_reference": "kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64 as component of SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
},
"product_reference": "reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43886",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43886"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check in resource_log_pipe_topology_update\n\n[WHY]\nWhen switching from \"Extend\" to \"Second Display Only\" we sometimes\ncall resource_get_otg_master_for_stream on a stream for the eDP,\nwhich is disconnected. This leads to a null pointer dereference.\n\n[HOW]\nAdded a null check in dc_resource.c/resource_log_pipe_topology_update.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43886",
"url": "https://www.suse.com/security/cve/CVE-2024-43886"
},
{
"category": "external",
"summary": "SUSE Bug 1229748 for CVE-2024-43886",
"url": "https://bugzilla.suse.com/1229748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43886"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44972"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: do not clear page dirty inside extent_write_locked_range()\n\n[BUG]\nFor subpage + zoned case, the following workload can lead to rsv data\nleak at unmount time:\n\n # mkfs.btrfs -f -s 4k $dev\n # mount $dev $mnt\n # fsstress -w -n 8 -d $mnt -s 1709539240\n 0/0: fiemap - no filename\n 0/1: copyrange read - no filename\n 0/2: write - no filename\n 0/3: rename - no source filename\n 0/4: creat f0 x:0 0 0\n 0/4: creat add id=0,parent=-1\n 0/5: writev f0[259 1 0 0 0 0] [778052,113,965] 0\n 0/6: ioctl(FIEMAP) f0[259 1 0 0 224 887097] [1294220,2291618343991484791,0x10000] -1\n 0/7: dwrite - xfsctl(XFS_IOC_DIOINFO) f0[259 1 0 0 224 887097] return 25, fallback to stat()\n 0/7: dwrite f0[259 1 0 0 224 887097] [696320,102400] 0\n # umount $mnt\n\nThe dmesg includes the following rsv leak detection warning (all call\ntrace skipped):\n\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 4528 at fs/btrfs/inode.c:8653 btrfs_destroy_inode+0x1e0/0x200 [btrfs]\n ---[ end trace 0000000000000000 ]---\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 4528 at fs/btrfs/inode.c:8654 btrfs_destroy_inode+0x1a8/0x200 [btrfs]\n ---[ end trace 0000000000000000 ]---\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 4528 at fs/btrfs/inode.c:8660 btrfs_destroy_inode+0x1a0/0x200 [btrfs]\n ---[ end trace 0000000000000000 ]---\n BTRFS info (device sda): last unmount of filesystem 1b4abba9-de34-4f07-9e7f-157cf12a18d6\n ------------[ cut here ]------------\n WARNING: CPU: 3 PID: 4528 at fs/btrfs/block-group.c:4434 btrfs_free_block_groups+0x338/0x500 [btrfs]\n ---[ end trace 0000000000000000 ]---\n BTRFS info (device sda): space_info DATA has 268218368 free, is not full\n BTRFS info (device sda): space_info total=268435456, used=204800, pinned=0, reserved=0, may_use=12288, readonly=0 zone_unusable=0\n BTRFS info (device sda): global_block_rsv: size 0 reserved 0\n BTRFS info (device sda): trans_block_rsv: size 0 reserved 0\n BTRFS info (device sda): chunk_block_rsv: size 0 reserved 0\n BTRFS info (device sda): delayed_block_rsv: size 0 reserved 0\n BTRFS info (device sda): delayed_refs_rsv: size 0 reserved 0\n ------------[ cut here ]------------\n WARNING: CPU: 3 PID: 4528 at fs/btrfs/block-group.c:4434 btrfs_free_block_groups+0x338/0x500 [btrfs]\n ---[ end trace 0000000000000000 ]---\n BTRFS info (device sda): space_info METADATA has 267796480 free, is not full\n BTRFS info (device sda): space_info total=268435456, used=131072, pinned=0, reserved=0, may_use=262144, readonly=0 zone_unusable=245760\n BTRFS info (device sda): global_block_rsv: size 0 reserved 0\n BTRFS info (device sda): trans_block_rsv: size 0 reserved 0\n BTRFS info (device sda): chunk_block_rsv: size 0 reserved 0\n BTRFS info (device sda): delayed_block_rsv: size 0 reserved 0\n BTRFS info (device sda): delayed_refs_rsv: size 0 reserved 0\n\nAbove $dev is a tcmu-runner emulated zoned HDD, which has a max zone\nappend size of 64K, and the system has 64K page size.\n\n[CAUSE]\nI have added several trace_printk() to show the events (header skipped):\n\n \u003e btrfs_dirty_pages: r/i=5/259 dirty start=774144 len=114688\n \u003e btrfs_dirty_pages: r/i=5/259 dirty part of page=720896 off_in_page=53248 len_in_page=12288\n \u003e btrfs_dirty_pages: r/i=5/259 dirty part of page=786432 off_in_page=0 len_in_page=65536\n \u003e btrfs_dirty_pages: r/i=5/259 dirty part of page=851968 off_in_page=0 len_in_page=36864\n\nThe above lines show our buffered write has dirtied 3 pages of inode\n259 of root 5:\n\n 704K 768K 832K 896K\n I |////I/////////////////I///////////| I\n 756K 868K\n\n |///| is the dirtied range using subpage bitmaps. and \u0027I\u0027 is the page\n boundary.\n\n Meanwhile all three pages (704K, 768K, 832K) have their PageDirty\n flag set.\n\n \u003e btrfs_direct_write: r/i=5/259 start dio filepos=696320 len=102400\n\nThen direct IO writ\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44972",
"url": "https://www.suse.com/security/cve/CVE-2024-44972"
},
{
"category": "external",
"summary": "SUSE Bug 1230212 for CVE-2024-44972",
"url": "https://bugzilla.suse.com/1230212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44972"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46711",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46711"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: pm: fix ID 0 endp usage after multiple re-creations\n\n\u0027local_addr_used\u0027 and \u0027add_addr_accepted\u0027 are decremented for addresses\nnot related to the initial subflow (ID0), because the source and\ndestination addresses of the initial subflows are known from the\nbeginning: they don\u0027t count as \"additional local address being used\" or\n\"ADD_ADDR being accepted\".\n\nIt is then required not to increment them when the entrypoint used by\nthe initial subflow is removed and re-added during a connection. Without\nthis modification, this entrypoint cannot be removed and re-added more\nthan once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46711",
"url": "https://www.suse.com/security/cve/CVE-2024-46711"
},
{
"category": "external",
"summary": "SUSE Bug 1230542 for CVE-2024-46711",
"url": "https://bugzilla.suse.com/1230542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46711"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add otg_master NULL check within resource_log_pipe_topology_update\n\n[Why]\nCoverity reports NULL_RETURN warning.\n\n[How]\nAdd otg_master NULL check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46727",
"url": "https://www.suse.com/security/cve/CVE-2024-46727"
},
{
"category": "external",
"summary": "SUSE Bug 1230707 for CVE-2024-46727",
"url": "https://bugzilla.suse.com/1230707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46727"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-coco_debug-devel-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-devel-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-source-coco-6.4.0-15061.6.coco15sp6.1.noarch",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:kernel-syms-coco-6.4.0-15061.6.coco15sp6.1.x86_64",
"SUSE Linux Enterprise Module for Confidential Computing Technical Preview 15 SP6:reiserfs-kmp-coco-6.4.0-15061.6.coco15sp6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-10-08T15:10:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2025:20077-1
Vulnerability from csaf_suse
Published
2025-02-03 09:05
Modified
2025-02-03 09:05
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise Micro 6.0 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- Drop mm patches that caused regressions (bsc#1230413)
- Enable livepatching related packages on -RT (jsc#PED-1706)
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Merge branch 'ALP-current' (0e26fa94003b) into 'ALP-current-RT'
- Move fixes into sorted section (bsc#1230119)
- Move s390 kabi patch into the kabi section
- Move upstreamed SCSI patches into sorted section
- Move upstreamed input patch into sorted section
- Move upstreamed kaslr patch into sorted section
- Move upstreamed nvme patches into sorted section
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- No -rt specific changes this merge.
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for "dra7xx-pcie-main" IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Replace git-fixes tag by bsc#1226507, patches.suse/md-Don-t-wait-for-MD_RECOVERY_NEEDED-for-HOT_REMOVE_DISK-ioctl-a1fd.patch (bsc#1226507).
- Resort io_uring kABI patches These ended up in the wrong section. Push them to the right place, next to the other io_uring kabi patches.
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Revert "Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE" (git-fixes).
- Revert "PCI: Extend ACS configurability (bsc#1228090)." (bsc#1229019) This reverts commit 571e4310e81312c847a5caee7e45e66aeea2a169. It breaks ACS on certain platforms. Even 6.11 is affected. So drop for now and investigate.
- Revert "drm/amdgpu: align pp_power_profile_mode with kernel docs" (stable-fixes).
- Revert "media: tuners: fix error return code of hybrid_tuner_request_state()" (git-fixes).
- Revert "mm, kmsan: fix infinite recursion due to RCU critical section" This reverts commit 16ad73a9f4c2888f3bc28513f5e9a88d753f8741.
- Revert "mm/sparsemem: fix race in accessing memory_section->usage" This reverts commit 6aa8957889611fbe7f06353f917cfb3d9620a680.
- Revert "mm: prevent derefencing NULL ptr in pfn_section_valid()" This reverts commit 35f619d3c421219e07bc89d2d6a37fbff25519fe.
- Split kabi part of dm_blk_ioctl-implement-path-failover-for-SG_IO.patch
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- Update patches.suse/af_unix-Fix-data-races-around-sk-sk_shutdown.patch (git-fixes bsc#1226846).
- Update patches.suse/gfs2-Fix-NULL-pointer-dereference-in-gfs2_log_flush.patch (bsc#1230948)
- Update patches.suse/powerpc-pseries-make-max-polling-consistent-for-long.patch (bsc#1215199 jsc#PED-10954).
- Update patches.suse/security-integrity-fix-pointer-to-ESL-data-and-.patch (bsc#1012628 jsc#PED-5085 jsc#PED-10954).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert "afs: Hide silly-rename files from userspace" (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blacklist.conf: ("KVM: arm64: Use TLBI_TTL_UNKNOWN in __kvm_tlb_flush_vmid_range()") (bsc#1229585)
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771) Move patch into the sorted section.
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kABI: Workaround kABI change in patches.suse/iommu-dma-Trace-bounce-buffer-usage-when-mapping-buf.patch (git-fixes).
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for "/tmp/perf-$PID.map" files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
Patchnames
SUSE-SLE-Micro-6.0-84
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise Micro 6.0 RT kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).\n- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).\n- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).\n- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).\n- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).\n- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).\n- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).\n- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).\n- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).\n- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).\n- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).\n- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).\n- CVE-2024-42265: protect the fetch of -\u003efd[fd] in do_dup2() from mispredictions (bsc#1229334).\n- CVE-2024-42294: block: fix deadlock between sd_remove \u0026 sd_release (bsc#1229371).\n- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).\n- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).\n- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).\n- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).\n- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).\n- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).\n- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).\n- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).\n- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).\n- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).\n- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).\n- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).\n- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).\n- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).\n- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).\n- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).\n- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).\n- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).\n- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).\n- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).\n- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).\n- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).\n- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).\n- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).\n- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).\n- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).\n- CVE-2024-45003: Don\u0027t evict inode under the inode lru traversing context (bsc#1230245).\n- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).\n- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).\n- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).\n- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).\n- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).\n- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).\n- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).\n- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).\n- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).\n- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).\n- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).\n- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).\n- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).\n- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).\n- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).\n- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).\n- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).\n- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).\n- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).\n- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).\n- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).\n- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).\n- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).\n- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).\n- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).\n- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).\n- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).\n- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).\n- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).\n- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).\n\nThe following non-security bugs were fixed:\n\n- ABI: testing: fix admv8818 attr description (git-fixes).\n- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).\n- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).\n- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).\n- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).\n- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).\n- ACPI: sysfs: validate return type of _STR method (git-fixes).\n- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).\n- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).\n- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).\n- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).\n- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).\n- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).\n- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).\n- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).\n- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).\n- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).\n- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).\n- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).\n- ASoC: cs42l42: Convert comma to semicolon (git-fixes).\n- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: meson: Remove unused declartion in header file (git-fixes).\n- ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-ac97: Fix the incorrect description (git-fixes).\n- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).\n- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- ASoC: tegra: Fix CBB error during probe() (git-fixes).\n- ASoC: topology: Properly initialize soc_enum values (stable-fixes).\n- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).\n- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).\n- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).\n- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).\n- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).\n- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).\n- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).\n- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).\n- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).\n- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).\n- Documentation: ioctl: document 0x07 ioctl code (git-fixes).\n- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).\n- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).\n- Drop mm patches that caused regressions (bsc#1230413)\n- Enable livepatching related packages on -RT (jsc#PED-1706)\n- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).\n- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).\n- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).\n- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)\n- Input: adp5588-keys - fix check on return code (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).\n- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).\n- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).\n- Input: tsc2004/5 - fix reset handling on probe (git-fixes).\n- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).\n- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).\n- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).\n- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).\n- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).\n- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: x86: Acquire kvm-\u003esrcu when handling KVM_SET_VCPU_EVENTS (git-fixes).\n- Merge branch \u0027ALP-current\u0027 (0e26fa94003b) into \u0027ALP-current-RT\u0027\n- Move fixes into sorted section (bsc#1230119)\n- Move s390 kabi patch into the kabi section\n- Move upstreamed SCSI patches into sorted section\n- Move upstreamed input patch into sorted section\n- Move upstreamed kaslr patch into sorted section\n- Move upstreamed nvme patches into sorted section\n- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).\n- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).\n- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).\n- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).\n- No -rt specific changes this merge.\n- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).\n- PCI: Wait for Link before restoring Downstream Buses (git-fixes).\n- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).\n- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).\n- PCI: dra7xx: Fix threaded IRQ request for \"dra7xx-pcie-main\" IRQ (git-fixes).\n- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).\n- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).\n- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).\n- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).\n- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).\n- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).\n- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).\n- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).\n- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).\n- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)\n- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)\n- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)\n- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)\n- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)\n- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)\n- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)\n- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)\n- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)\n- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)\n- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)\n- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)\n- RDMA/hns: Optimize hem allocation performance (git-fixes)\n- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)\n- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)\n- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)\n- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)\n- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)\n- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)\n- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)\n- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)\n- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)\n- Replace git-fixes tag by bsc#1226507, patches.suse/md-Don-t-wait-for-MD_RECOVERY_NEEDED-for-HOT_REMOVE_DISK-ioctl-a1fd.patch (bsc#1226507).\n- Resort io_uring kABI patches These ended up in the wrong section. Push them to the right place, next to the other io_uring kabi patches.\n- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).\n- Revert \"Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE\" (git-fixes).\n- Revert \"PCI: Extend ACS configurability (bsc#1228090).\" (bsc#1229019) This reverts commit 571e4310e81312c847a5caee7e45e66aeea2a169. It breaks ACS on certain platforms. Even 6.11 is affected. So drop for now and investigate.\n- Revert \"drm/amdgpu: align pp_power_profile_mode with kernel docs\" (stable-fixes).\n- Revert \"media: tuners: fix error return code of hybrid_tuner_request_state()\" (git-fixes).\n- Revert \"mm, kmsan: fix infinite recursion due to RCU critical section\" This reverts commit 16ad73a9f4c2888f3bc28513f5e9a88d753f8741.\n- Revert \"mm/sparsemem: fix race in accessing memory_section-\u003eusage\" This reverts commit 6aa8957889611fbe7f06353f917cfb3d9620a680.\n- Revert \"mm: prevent derefencing NULL ptr in pfn_section_valid()\" This reverts commit 35f619d3c421219e07bc89d2d6a37fbff25519fe.\n- Split kabi part of dm_blk_ioctl-implement-path-failover-for-SG_IO.patch\n- Squashfs: sanity check symbolic link size (git-fixes).\n- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).\n- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (git-fixes).\n- USB: serial: option: add MeiG Smart SRM825L (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).\n- Update patches.suse/af_unix-Fix-data-races-around-sk-sk_shutdown.patch (git-fixes bsc#1226846).\n- Update patches.suse/gfs2-Fix-NULL-pointer-dereference-in-gfs2_log_flush.patch (bsc#1230948)\n- Update patches.suse/powerpc-pseries-make-max-polling-consistent-for-long.patch (bsc#1215199 jsc#PED-10954).\n- Update patches.suse/security-integrity-fix-pointer-to-ESL-data-and-.patch (bsc#1012628 jsc#PED-5085 jsc#PED-10954).\n- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).\n- afs: Do not cross .backup mountpoint from backup volume (git-fixes).\n- afs: Revert \"afs: Hide silly-rename files from userspace\" (git-fixes).\n- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)\n- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)\n- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).\n- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).\n- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).\n- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).\n- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).\n- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).\n- arm64: dts: rockchip: Raise Pinebook Pro\u0027s panel backlight PWM frequency (git-fixes).\n- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).\n- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).\n- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)\n- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)\n- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)\n- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).\n- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).\n- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).\n- ata: pata_macio: Use WARN instead of BUG (stable-fixes).\n- blacklist.conf: (\"KVM: arm64: Use TLBI_TTL_UNKNOWN in __kvm_tlb_flush_vmid_range()\") (bsc#1229585)\n- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).\n- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).\n- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).\n- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).\n- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).\n- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).\n- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).\n- can: bcm: Clear bo-\u003ebcm_proc_read after remove_proc_entry() (git-fixes).\n- can: bcm: Remove proc entry when dev is unregistered (git-fixes).\n- can: j1939: use correct function name in comment (git-fixes).\n- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).\n- can: m_can: Release irq on error in m_can_open (git-fixes).\n- can: m_can: enable NAPI before enabling interrupts (git-fixes).\n- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).\n- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).\n- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).\n- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).\n- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).\n- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).\n- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).\n- can: mcp251xfd: properly indent labels (stable-fixes).\n- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).\n- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).\n- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).\n- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).\n- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).\n- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).\n- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).\n- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).\n- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).\n- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).\n- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).\n- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).\n- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).\n- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).\n- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).\n- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).\n- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).\n- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).\n- crypto: iaa - Fix potential use after free bug (git-fixes).\n- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).\n- crypto: xor - fix template benchmarking (git-fixes).\n- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).\n- cxl/pci: Fix to record only non-zero ranges (git-fixes).\n- devres: Initialize an uninitialized struct member (stable-fixes).\n- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).\n- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).\n- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).\n- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).\n- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).\n- driver core: Fix error handling in driver API device_rename() (git-fixes).\n- driver: iio: add missing checks on iio_info\u0027s callback access (stable-fixes).\n- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).\n- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).\n- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).\n- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).\n- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).\n- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).\n- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).\n- drm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing (stable-fixes).\n- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).\n- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).\n- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).\n- drm/amd/display: Check BIOS images before it is used (stable-fixes).\n- drm/amd/display: Check HDCP returned status (stable-fixes).\n- drm/amd/display: Check UnboundedRequestEnabled\u0027s value (stable-fixes).\n- drm/amd/display: Check denominator pbn_div before used (stable-fixes).\n- drm/amd/display: Check gpio_id before used as array index (stable-fixes).\n- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).\n- drm/amd/display: Check msg_id before processing transcation (stable-fixes).\n- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).\n- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).\n- drm/amd/display: Defer handling mst up request in resume (stable-fixes).\n- drm/amd/display: Disable error correction if it\u0027s not supported (stable-fixes).\n- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).\n- drm/amd/display: Ensure array index tg_inst won\u0027t be -1 (stable-fixes).\n- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).\n- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).\n- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).\n- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).\n- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).\n- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).\n- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).\n- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).\n- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).\n- drm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc (stable-fixes).\n- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).\n- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).\n- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).\n- drm/amd/display: Spinlock before reading event (stable-fixes).\n- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).\n- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).\n- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).\n- drm/amd/display: handle nulled pipe context in DCE110\u0027s set_drr() (git-fixes).\n- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).\n- drm/amd/pm: Fix negative array index read (stable-fixes).\n- drm/amd/pm: check negtive return for table entries (stable-fixes).\n- drm/amd/pm: check specific index for aldebaran (stable-fixes).\n- drm/amd/pm: check specific index for smu13 (stable-fixes).\n- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).\n- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).\n- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).\n- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).\n- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).\n- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).\n- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).\n- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).\n- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).\n- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).\n- drm/amdgpu: Fix get each xcp macro (git-fixes).\n- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).\n- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).\n- drm/amdgpu: Fix smatch static checker warning (stable-fixes).\n- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).\n- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).\n- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).\n- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).\n- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).\n- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).\n- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).\n- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).\n- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).\n- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).\n- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).\n- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).\n- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).\n- drm/amdgpu: fix a possible null pointer dereference (git-fixes).\n- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).\n- drm/amdgpu: fix dereference after null check (stable-fixes).\n- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix overflowed array index read warning (stable-fixes).\n- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).\n- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).\n- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).\n- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).\n- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).\n- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).\n- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).\n- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).\n- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).\n- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).\n- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).\n- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).\n- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).\n- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).\n- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).\n- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).\n- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).\n- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).\n- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).\n- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).\n- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).\n- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).\n- drm/meson: plane: Add error handling (stable-fixes).\n- drm/msm/a5xx: disable preemption in submits by default (git-fixes).\n- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).\n- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).\n- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).\n- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).\n- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).\n- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).\n- drm/msm: fix %s null argument error (git-fixes).\n- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).\n- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).\n- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).\n- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).\n- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).\n- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).\n- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).\n- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).\n- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).\n- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).\n- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).\n- erofs: fix incorrect symlink detection in fast symlink (git-fixes).\n- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).\n- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).\n- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- firmware_loader: Block path traversal (git-fixes).\n- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).\n- fuse: fix memory leak in fuse_create_open (bsc#1230124).\n- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).\n- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).\n- gpio: modepin: Enable module autoloading (git-fixes).\n- gpio: rockchip: fix OF node leak in probe() (git-fixes).\n- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).\n- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).\n- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).\n- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).\n- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev \u003e= 1.2 (git-fixes).\n- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).\n- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).\n- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).\n- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).\n- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).\n- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).\n- i2c: isch: Add missed \u0027else\u0027 (git-fixes).\n- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).\n- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).\n- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).\n- iio: adc: ad7124: fix chip ID mismatch (git-fixes).\n- iio: adc: ad7124: fix config comparison (git-fixes).\n- iio: adc: ad7606: fix oversampling gpio array (git-fixes).\n- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).\n- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).\n- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).\n- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).\n- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).\n- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).\n- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).\n- ipmi:ssif: Improve detecting during probing (bsc#1228771)\n- ipmi:ssif: Improve detecting during probing (bsc#1228771) Move patch into the sorted section.\n- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)\n- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).\n- kABI workaround for cros_ec stuff (git-fixes).\n- kABI: Workaround kABI change in patches.suse/iommu-dma-Trace-bounce-buffer-usage-when-mapping-buf.patch (git-fixes).\n- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).\n- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).\n- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).\n- leds: spi-byte: Call of_node_put() on error path (stable-fixes).\n- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).\n- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).\n- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).\n- mailbox: rockchip: fix a typo in module autoloading (git-fixes).\n- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).\n- media: ov5675: Fix power on/off delay timings (git-fixes).\n- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).\n- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).\n- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).\n- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).\n- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).\n- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).\n- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).\n- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).\n- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).\n- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).\n- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).\n- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).\n- misc: fastrpc: Fix double free of \u0027buf\u0027 in error path (git-fixes).\n- mmc: core: apply SD quirks earlier during probe (git-fixes).\n- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).\n- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).\n- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).\n- module: Fix KCOV-ignored file name (git-fixes).\n- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).\n- mtd: slram: insert break after errors in parsing the map (git-fixes).\n- net: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup (git-fixes).\n- net: phy: Fix missing of_node_put() for leds (git-fixes).\n- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).\n- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).\n- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).\n- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).\n- nilfs2: determine empty node blocks as corrupted (git-fixes).\n- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).\n- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).\n- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).\n- nilfs2: fix state management in error path of log writing function (git-fixes).\n- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).\n- nouveau: fix the fwsec sb verification register (git-fixes).\n- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).\n- nvme-multipath: system fails to create generic nvme device (bsc#1228244).\n- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).\n- nvme-pci: allocate tagset on reset if necessary (git-fixes).\n- nvme-tcp: fix link failure for TCP auth (git-fixes).\n- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).\n- nvme: clear caller pointer on identify failure (git-fixes).\n- nvme: fix namespace removal list (git-fixes).\n- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).\n- nvmet-tcp: do not continue for invalid icreq (git-fixes).\n- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).\n- nvmet-trace: avoid dereferencing pointer too early (git-fixes).\n- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).\n- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).\n- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).\n- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).\n- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).\n- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).\n- pcmcia: Use resource_size function on resource object (stable-fixes).\n- perf annotate: Introduce global annotation_options (git-fixes).\n- perf annotate: Split branch stack cycles information out of \u0027struct annotation_line\u0027 (git-fixes).\n- perf annotate: Use global annotation_options (git-fixes).\n- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).\n- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).\n- perf intel-pt: Fix exclude_guest setting (git-fixes).\n- perf machine thread: Remove exited threads by default (git-fixes).\n- perf maps: Move symbol maps functions to maps.c (git-fixes).\n- perf pmu: Assume sysfs events are always the same case (git-fixes).\n- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).\n- perf record: Lazy load kernel symbols (git-fixes).\n- perf report: Convert to the global annotation_options (git-fixes).\n- perf report: Fix condition in sort__sym_cmp() (git-fixes).\n- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).\n- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).\n- perf tool: fix dereferencing NULL al-\u003emaps (git-fixes).\n- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).\n- perf tools: Use pmus to describe type from attribute (git-fixes).\n- perf top: Convert to the global annotation_options (git-fixes).\n- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).\n- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).\n- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).\n- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).\n- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).\n- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).\n- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).\n- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).\n- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).\n- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).\n- perf/x86/intel: Factor out the initialization code for SPR (git fixes).\n- perf/x86/intel: Limit the period on Haswell (git-fixes).\n- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).\n- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).\n- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).\n- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).\n- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).\n- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).\n- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).\n- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).\n- perf/x86: Serialize set_attr_rdpmc() (git-fixes).\n- perf: Fix default aux_watermark calculation (git-fixes).\n- perf: Fix event leak upon exit (git-fixes).\n- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).\n- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).\n- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).\n- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).\n- pinctrl: at91: make it work with current gpiolib (stable-fixes).\n- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).\n- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).\n- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).\n- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).\n- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).\n- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).\n- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).\n- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).\n- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).\n- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).\n- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).\n- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).\n- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).\n- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).\n- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).\n- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).\n- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).\n- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).\n- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).\n- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).\n- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).\n- regulator: rt5120: Convert comma to semicolon (git-fixes).\n- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).\n- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).\n- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).\n- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).\n- reset: berlin: fix OF node leak in probe() error path (git-fixes).\n- reset: k210: fix OF node leak in probe() error path (git-fixes).\n- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).\n- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc\n- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).\n- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).\n- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).\n- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).\n- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).\n- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).\n- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).\n- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).\n- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).\n- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Copyright updates for 14.4.0.4 patches (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).\n- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).\n- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).\n- selftests: lib: remove strscpy test (git-fixes).\n- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).\n- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).\n- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).\n- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).\n- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: meson-spicc: convert comma to semicolon (git-fixes).\n- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).\n- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).\n- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)\n- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).\n- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).\n- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).\n- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).\n- tomoyo: fallback to realpath if symlink\u0027s pathname does not exist (git-fixes).\n- tools/perf: Fix the string match for \"/tmp/perf-$PID.map\" files in dso__load (git-fixes).\n- tpm: Clean up TPM space after command failure (git-fixes).\n- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).\n- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).\n- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).\n- usb: cdnsp: Fix incorrect usb_request status (git-fixes).\n- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).\n- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).\n- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).\n- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).\n- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).\n- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).\n- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).\n- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).\n- usb: uas: set host status byte on data completion error (stable-fixes).\n- usbip: Do not submit special requests twice (stable-fixes).\n- usbnet: ipheth: add CDC NCM support (git-fixes).\n- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).\n- usbnet: ipheth: drop RX URBs with no payload (git-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).\n- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).\n- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).\n- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).\n- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).\n- usbnet: modern method to get random MAC (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_net: Fix napi_skb_cache_put warning (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).\n- wifi: ath11k: initialize \u0027ret\u0027 in ath11k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).\n- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).\n- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).\n- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).\n- wifi: ath12k: initialize \u0027ret\u0027 in ath12k_qmi_load_file_target_mem() (stable-fixes).\n- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: brcmfmac: introducing fwil query functions (git-fixes).\n- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).\n- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).\n- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).\n- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).\n- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).\n- wifi: cfg80211: restrict operation during radar detection (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).\n- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).\n- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).\n- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).\n- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).\n- wifi: mac80211: fix the comeback long retry times (git-fixes).\n- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).\n- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).\n- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).\n- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).\n- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).\n- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).\n- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).\n- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).\n- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).\n- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).\n- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).\n- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).\n- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).\n- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).\n- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).\n- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).\n- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).\n- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).\n- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).\n- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).\n- wifi: rtw88: remove CPT execution branch never used (git-fixes).\n- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).\n- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).\n- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).\n- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).\n- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).\n- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).\n- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).\n- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).\n- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).\n- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).\n- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).\n- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).\n- xen/swiotlb: fix allocated size (git-fixes).\n- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).\n- xen: allow mapping ACPI data using a different physical address (bsc#1226003).\n- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).\n- xen: move checks for e820 conflicts further up (bsc#1226003).\n- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).\n- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).\n- xen: use correct end address of kernel for conflict checking (bsc#1226003).\n- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).\n- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).\n- xz: cleanup CRC32 edits from 2018 (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-84",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20077-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20077-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520077-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20077-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021265.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1183045",
"url": "https://bugzilla.suse.com/1183045"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1216223",
"url": "https://bugzilla.suse.com/1216223"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1220382",
"url": "https://bugzilla.suse.com/1220382"
},
{
"category": "self",
"summary": "SUSE Bug 1221527",
"url": "https://bugzilla.suse.com/1221527"
},
{
"category": "self",
"summary": "SUSE Bug 1221610",
"url": "https://bugzilla.suse.com/1221610"
},
{
"category": "self",
"summary": "SUSE Bug 1221650",
"url": "https://bugzilla.suse.com/1221650"
},
{
"category": "self",
"summary": "SUSE Bug 1222629",
"url": "https://bugzilla.suse.com/1222629"
},
{
"category": "self",
"summary": "SUSE Bug 1223600",
"url": "https://bugzilla.suse.com/1223600"
},
{
"category": "self",
"summary": "SUSE Bug 1223848",
"url": "https://bugzilla.suse.com/1223848"
},
{
"category": "self",
"summary": "SUSE Bug 1225487",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "self",
"summary": "SUSE Bug 1225812",
"url": "https://bugzilla.suse.com/1225812"
},
{
"category": "self",
"summary": "SUSE Bug 1225903",
"url": "https://bugzilla.suse.com/1225903"
},
{
"category": "self",
"summary": "SUSE Bug 1226003",
"url": "https://bugzilla.suse.com/1226003"
},
{
"category": "self",
"summary": "SUSE Bug 1226507",
"url": "https://bugzilla.suse.com/1226507"
},
{
"category": "self",
"summary": "SUSE Bug 1226606",
"url": "https://bugzilla.suse.com/1226606"
},
{
"category": "self",
"summary": "SUSE Bug 1226666",
"url": "https://bugzilla.suse.com/1226666"
},
{
"category": "self",
"summary": "SUSE Bug 1226846",
"url": "https://bugzilla.suse.com/1226846"
},
{
"category": "self",
"summary": "SUSE Bug 1226860",
"url": "https://bugzilla.suse.com/1226860"
},
{
"category": "self",
"summary": "SUSE Bug 1227487",
"url": "https://bugzilla.suse.com/1227487"
},
{
"category": "self",
"summary": "SUSE Bug 1227694",
"url": "https://bugzilla.suse.com/1227694"
},
{
"category": "self",
"summary": "SUSE Bug 1227726",
"url": "https://bugzilla.suse.com/1227726"
},
{
"category": "self",
"summary": "SUSE Bug 1227819",
"url": "https://bugzilla.suse.com/1227819"
},
{
"category": "self",
"summary": "SUSE Bug 1227885",
"url": "https://bugzilla.suse.com/1227885"
},
{
"category": "self",
"summary": "SUSE Bug 1227890",
"url": "https://bugzilla.suse.com/1227890"
},
{
"category": "self",
"summary": "SUSE Bug 1227962",
"url": "https://bugzilla.suse.com/1227962"
},
{
"category": "self",
"summary": "SUSE Bug 1228090",
"url": "https://bugzilla.suse.com/1228090"
},
{
"category": "self",
"summary": "SUSE Bug 1228140",
"url": "https://bugzilla.suse.com/1228140"
},
{
"category": "self",
"summary": "SUSE Bug 1228244",
"url": "https://bugzilla.suse.com/1228244"
},
{
"category": "self",
"summary": "SUSE Bug 1228507",
"url": "https://bugzilla.suse.com/1228507"
},
{
"category": "self",
"summary": "SUSE Bug 1228771",
"url": "https://bugzilla.suse.com/1228771"
},
{
"category": "self",
"summary": "SUSE Bug 1229001",
"url": "https://bugzilla.suse.com/1229001"
},
{
"category": "self",
"summary": "SUSE Bug 1229004",
"url": "https://bugzilla.suse.com/1229004"
},
{
"category": "self",
"summary": "SUSE Bug 1229019",
"url": "https://bugzilla.suse.com/1229019"
},
{
"category": "self",
"summary": "SUSE Bug 1229086",
"url": "https://bugzilla.suse.com/1229086"
},
{
"category": "self",
"summary": "SUSE Bug 1229167",
"url": "https://bugzilla.suse.com/1229167"
},
{
"category": "self",
"summary": "SUSE Bug 1229169",
"url": "https://bugzilla.suse.com/1229169"
},
{
"category": "self",
"summary": "SUSE Bug 1229289",
"url": "https://bugzilla.suse.com/1229289"
},
{
"category": "self",
"summary": "SUSE Bug 1229334",
"url": "https://bugzilla.suse.com/1229334"
},
{
"category": "self",
"summary": "SUSE Bug 1229362",
"url": "https://bugzilla.suse.com/1229362"
},
{
"category": "self",
"summary": "SUSE Bug 1229363",
"url": "https://bugzilla.suse.com/1229363"
},
{
"category": "self",
"summary": "SUSE Bug 1229364",
"url": "https://bugzilla.suse.com/1229364"
},
{
"category": "self",
"summary": "SUSE Bug 1229371",
"url": "https://bugzilla.suse.com/1229371"
},
{
"category": "self",
"summary": "SUSE Bug 1229380",
"url": "https://bugzilla.suse.com/1229380"
},
{
"category": "self",
"summary": "SUSE Bug 1229389",
"url": "https://bugzilla.suse.com/1229389"
},
{
"category": "self",
"summary": "SUSE Bug 1229394",
"url": "https://bugzilla.suse.com/1229394"
},
{
"category": "self",
"summary": "SUSE Bug 1229429",
"url": "https://bugzilla.suse.com/1229429"
},
{
"category": "self",
"summary": "SUSE Bug 1229443",
"url": "https://bugzilla.suse.com/1229443"
},
{
"category": "self",
"summary": "SUSE Bug 1229452",
"url": "https://bugzilla.suse.com/1229452"
},
{
"category": "self",
"summary": "SUSE Bug 1229455",
"url": "https://bugzilla.suse.com/1229455"
},
{
"category": "self",
"summary": "SUSE Bug 1229456",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "self",
"summary": "SUSE Bug 1229494",
"url": "https://bugzilla.suse.com/1229494"
},
{
"category": "self",
"summary": "SUSE Bug 1229585",
"url": "https://bugzilla.suse.com/1229585"
},
{
"category": "self",
"summary": "SUSE Bug 1229753",
"url": "https://bugzilla.suse.com/1229753"
},
{
"category": "self",
"summary": "SUSE Bug 1229764",
"url": "https://bugzilla.suse.com/1229764"
},
{
"category": "self",
"summary": "SUSE Bug 1229768",
"url": "https://bugzilla.suse.com/1229768"
},
{
"category": "self",
"summary": "SUSE Bug 1229790",
"url": "https://bugzilla.suse.com/1229790"
},
{
"category": "self",
"summary": "SUSE Bug 1229810",
"url": "https://bugzilla.suse.com/1229810"
},
{
"category": "self",
"summary": "SUSE Bug 1229899",
"url": "https://bugzilla.suse.com/1229899"
},
{
"category": "self",
"summary": "SUSE Bug 1229928",
"url": "https://bugzilla.suse.com/1229928"
},
{
"category": "self",
"summary": "SUSE Bug 1230015",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "self",
"summary": "SUSE Bug 1230119",
"url": "https://bugzilla.suse.com/1230119"
},
{
"category": "self",
"summary": "SUSE Bug 1230123",
"url": "https://bugzilla.suse.com/1230123"
},
{
"category": "self",
"summary": "SUSE Bug 1230124",
"url": "https://bugzilla.suse.com/1230124"
},
{
"category": "self",
"summary": "SUSE Bug 1230125",
"url": "https://bugzilla.suse.com/1230125"
},
{
"category": "self",
"summary": "SUSE Bug 1230169",
"url": "https://bugzilla.suse.com/1230169"
},
{
"category": "self",
"summary": "SUSE Bug 1230170",
"url": "https://bugzilla.suse.com/1230170"
},
{
"category": "self",
"summary": "SUSE Bug 1230171",
"url": "https://bugzilla.suse.com/1230171"
},
{
"category": "self",
"summary": "SUSE Bug 1230173",
"url": "https://bugzilla.suse.com/1230173"
},
{
"category": "self",
"summary": "SUSE Bug 1230174",
"url": "https://bugzilla.suse.com/1230174"
},
{
"category": "self",
"summary": "SUSE Bug 1230175",
"url": "https://bugzilla.suse.com/1230175"
},
{
"category": "self",
"summary": "SUSE Bug 1230176",
"url": "https://bugzilla.suse.com/1230176"
},
{
"category": "self",
"summary": "SUSE Bug 1230178",
"url": "https://bugzilla.suse.com/1230178"
},
{
"category": "self",
"summary": "SUSE Bug 1230180",
"url": "https://bugzilla.suse.com/1230180"
},
{
"category": "self",
"summary": "SUSE Bug 1230181",
"url": "https://bugzilla.suse.com/1230181"
},
{
"category": "self",
"summary": "SUSE Bug 1230185",
"url": "https://bugzilla.suse.com/1230185"
},
{
"category": "self",
"summary": "SUSE Bug 1230191",
"url": "https://bugzilla.suse.com/1230191"
},
{
"category": "self",
"summary": "SUSE Bug 1230192",
"url": "https://bugzilla.suse.com/1230192"
},
{
"category": "self",
"summary": "SUSE Bug 1230193",
"url": "https://bugzilla.suse.com/1230193"
},
{
"category": "self",
"summary": "SUSE Bug 1230194",
"url": "https://bugzilla.suse.com/1230194"
},
{
"category": "self",
"summary": "SUSE Bug 1230195",
"url": "https://bugzilla.suse.com/1230195"
},
{
"category": "self",
"summary": "SUSE Bug 1230200",
"url": "https://bugzilla.suse.com/1230200"
},
{
"category": "self",
"summary": "SUSE Bug 1230204",
"url": "https://bugzilla.suse.com/1230204"
},
{
"category": "self",
"summary": "SUSE Bug 1230206",
"url": "https://bugzilla.suse.com/1230206"
},
{
"category": "self",
"summary": "SUSE Bug 1230207",
"url": "https://bugzilla.suse.com/1230207"
},
{
"category": "self",
"summary": "SUSE Bug 1230209",
"url": "https://bugzilla.suse.com/1230209"
},
{
"category": "self",
"summary": "SUSE Bug 1230211",
"url": "https://bugzilla.suse.com/1230211"
},
{
"category": "self",
"summary": "SUSE Bug 1230213",
"url": "https://bugzilla.suse.com/1230213"
},
{
"category": "self",
"summary": "SUSE Bug 1230217",
"url": "https://bugzilla.suse.com/1230217"
},
{
"category": "self",
"summary": "SUSE Bug 1230221",
"url": "https://bugzilla.suse.com/1230221"
},
{
"category": "self",
"summary": "SUSE Bug 1230224",
"url": "https://bugzilla.suse.com/1230224"
},
{
"category": "self",
"summary": "SUSE Bug 1230230",
"url": "https://bugzilla.suse.com/1230230"
},
{
"category": "self",
"summary": "SUSE Bug 1230232",
"url": "https://bugzilla.suse.com/1230232"
},
{
"category": "self",
"summary": "SUSE Bug 1230233",
"url": "https://bugzilla.suse.com/1230233"
},
{
"category": "self",
"summary": "SUSE Bug 1230240",
"url": "https://bugzilla.suse.com/1230240"
},
{
"category": "self",
"summary": "SUSE Bug 1230244",
"url": "https://bugzilla.suse.com/1230244"
},
{
"category": "self",
"summary": "SUSE Bug 1230245",
"url": "https://bugzilla.suse.com/1230245"
},
{
"category": "self",
"summary": "SUSE Bug 1230247",
"url": "https://bugzilla.suse.com/1230247"
},
{
"category": "self",
"summary": "SUSE Bug 1230248",
"url": "https://bugzilla.suse.com/1230248"
},
{
"category": "self",
"summary": "SUSE Bug 1230269",
"url": "https://bugzilla.suse.com/1230269"
},
{
"category": "self",
"summary": "SUSE Bug 1230270",
"url": "https://bugzilla.suse.com/1230270"
},
{
"category": "self",
"summary": "SUSE Bug 1230295",
"url": "https://bugzilla.suse.com/1230295"
},
{
"category": "self",
"summary": "SUSE Bug 1230340",
"url": "https://bugzilla.suse.com/1230340"
},
{
"category": "self",
"summary": "SUSE Bug 1230413",
"url": "https://bugzilla.suse.com/1230413"
},
{
"category": "self",
"summary": "SUSE Bug 1230426",
"url": "https://bugzilla.suse.com/1230426"
},
{
"category": "self",
"summary": "SUSE Bug 1230430",
"url": "https://bugzilla.suse.com/1230430"
},
{
"category": "self",
"summary": "SUSE Bug 1230431",
"url": "https://bugzilla.suse.com/1230431"
},
{
"category": "self",
"summary": "SUSE Bug 1230432",
"url": "https://bugzilla.suse.com/1230432"
},
{
"category": "self",
"summary": "SUSE Bug 1230433",
"url": "https://bugzilla.suse.com/1230433"
},
{
"category": "self",
"summary": "SUSE Bug 1230434",
"url": "https://bugzilla.suse.com/1230434"
},
{
"category": "self",
"summary": "SUSE Bug 1230435",
"url": "https://bugzilla.suse.com/1230435"
},
{
"category": "self",
"summary": "SUSE Bug 1230440",
"url": "https://bugzilla.suse.com/1230440"
},
{
"category": "self",
"summary": "SUSE Bug 1230441",
"url": "https://bugzilla.suse.com/1230441"
},
{
"category": "self",
"summary": "SUSE Bug 1230442",
"url": "https://bugzilla.suse.com/1230442"
},
{
"category": "self",
"summary": "SUSE Bug 1230444",
"url": "https://bugzilla.suse.com/1230444"
},
{
"category": "self",
"summary": "SUSE Bug 1230450",
"url": "https://bugzilla.suse.com/1230450"
},
{
"category": "self",
"summary": "SUSE Bug 1230451",
"url": "https://bugzilla.suse.com/1230451"
},
{
"category": "self",
"summary": "SUSE Bug 1230454",
"url": "https://bugzilla.suse.com/1230454"
},
{
"category": "self",
"summary": "SUSE Bug 1230455",
"url": "https://bugzilla.suse.com/1230455"
},
{
"category": "self",
"summary": "SUSE Bug 1230457",
"url": "https://bugzilla.suse.com/1230457"
},
{
"category": "self",
"summary": "SUSE Bug 1230459",
"url": "https://bugzilla.suse.com/1230459"
},
{
"category": "self",
"summary": "SUSE Bug 1230506",
"url": "https://bugzilla.suse.com/1230506"
},
{
"category": "self",
"summary": "SUSE Bug 1230507",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "self",
"summary": "SUSE Bug 1230511",
"url": "https://bugzilla.suse.com/1230511"
},
{
"category": "self",
"summary": "SUSE Bug 1230515",
"url": "https://bugzilla.suse.com/1230515"
},
{
"category": "self",
"summary": "SUSE Bug 1230517",
"url": "https://bugzilla.suse.com/1230517"
},
{
"category": "self",
"summary": "SUSE Bug 1230518",
"url": "https://bugzilla.suse.com/1230518"
},
{
"category": "self",
"summary": "SUSE Bug 1230519",
"url": "https://bugzilla.suse.com/1230519"
},
{
"category": "self",
"summary": "SUSE Bug 1230520",
"url": "https://bugzilla.suse.com/1230520"
},
{
"category": "self",
"summary": "SUSE Bug 1230521",
"url": "https://bugzilla.suse.com/1230521"
},
{
"category": "self",
"summary": "SUSE Bug 1230524",
"url": "https://bugzilla.suse.com/1230524"
},
{
"category": "self",
"summary": "SUSE Bug 1230526",
"url": "https://bugzilla.suse.com/1230526"
},
{
"category": "self",
"summary": "SUSE Bug 1230533",
"url": "https://bugzilla.suse.com/1230533"
},
{
"category": "self",
"summary": "SUSE Bug 1230535",
"url": "https://bugzilla.suse.com/1230535"
},
{
"category": "self",
"summary": "SUSE Bug 1230539",
"url": "https://bugzilla.suse.com/1230539"
},
{
"category": "self",
"summary": "SUSE Bug 1230540",
"url": "https://bugzilla.suse.com/1230540"
},
{
"category": "self",
"summary": "SUSE Bug 1230549",
"url": "https://bugzilla.suse.com/1230549"
},
{
"category": "self",
"summary": "SUSE Bug 1230556",
"url": "https://bugzilla.suse.com/1230556"
},
{
"category": "self",
"summary": "SUSE Bug 1230562",
"url": "https://bugzilla.suse.com/1230562"
},
{
"category": "self",
"summary": "SUSE Bug 1230563",
"url": "https://bugzilla.suse.com/1230563"
},
{
"category": "self",
"summary": "SUSE Bug 1230564",
"url": "https://bugzilla.suse.com/1230564"
},
{
"category": "self",
"summary": "SUSE Bug 1230580",
"url": "https://bugzilla.suse.com/1230580"
},
{
"category": "self",
"summary": "SUSE Bug 1230582",
"url": "https://bugzilla.suse.com/1230582"
},
{
"category": "self",
"summary": "SUSE Bug 1230589",
"url": "https://bugzilla.suse.com/1230589"
},
{
"category": "self",
"summary": "SUSE Bug 1230602",
"url": "https://bugzilla.suse.com/1230602"
},
{
"category": "self",
"summary": "SUSE Bug 1230699",
"url": "https://bugzilla.suse.com/1230699"
},
{
"category": "self",
"summary": "SUSE Bug 1230700",
"url": "https://bugzilla.suse.com/1230700"
},
{
"category": "self",
"summary": "SUSE Bug 1230701",
"url": "https://bugzilla.suse.com/1230701"
},
{
"category": "self",
"summary": "SUSE Bug 1230702",
"url": "https://bugzilla.suse.com/1230702"
},
{
"category": "self",
"summary": "SUSE Bug 1230703",
"url": "https://bugzilla.suse.com/1230703"
},
{
"category": "self",
"summary": "SUSE Bug 1230704",
"url": "https://bugzilla.suse.com/1230704"
},
{
"category": "self",
"summary": "SUSE Bug 1230705",
"url": "https://bugzilla.suse.com/1230705"
},
{
"category": "self",
"summary": "SUSE Bug 1230706",
"url": "https://bugzilla.suse.com/1230706"
},
{
"category": "self",
"summary": "SUSE Bug 1230709",
"url": "https://bugzilla.suse.com/1230709"
},
{
"category": "self",
"summary": "SUSE Bug 1230711",
"url": "https://bugzilla.suse.com/1230711"
},
{
"category": "self",
"summary": "SUSE Bug 1230712",
"url": "https://bugzilla.suse.com/1230712"
},
{
"category": "self",
"summary": "SUSE Bug 1230715",
"url": "https://bugzilla.suse.com/1230715"
},
{
"category": "self",
"summary": "SUSE Bug 1230719",
"url": "https://bugzilla.suse.com/1230719"
},
{
"category": "self",
"summary": "SUSE Bug 1230722",
"url": "https://bugzilla.suse.com/1230722"
},
{
"category": "self",
"summary": "SUSE Bug 1230724",
"url": "https://bugzilla.suse.com/1230724"
},
{
"category": "self",
"summary": "SUSE Bug 1230725",
"url": "https://bugzilla.suse.com/1230725"
},
{
"category": "self",
"summary": "SUSE Bug 1230726",
"url": "https://bugzilla.suse.com/1230726"
},
{
"category": "self",
"summary": "SUSE Bug 1230727",
"url": "https://bugzilla.suse.com/1230727"
},
{
"category": "self",
"summary": "SUSE Bug 1230730",
"url": "https://bugzilla.suse.com/1230730"
},
{
"category": "self",
"summary": "SUSE Bug 1230731",
"url": "https://bugzilla.suse.com/1230731"
},
{
"category": "self",
"summary": "SUSE Bug 1230732",
"url": "https://bugzilla.suse.com/1230732"
},
{
"category": "self",
"summary": "SUSE Bug 1230747",
"url": "https://bugzilla.suse.com/1230747"
},
{
"category": "self",
"summary": "SUSE Bug 1230748",
"url": "https://bugzilla.suse.com/1230748"
},
{
"category": "self",
"summary": "SUSE Bug 1230749",
"url": "https://bugzilla.suse.com/1230749"
},
{
"category": "self",
"summary": "SUSE Bug 1230751",
"url": "https://bugzilla.suse.com/1230751"
},
{
"category": "self",
"summary": "SUSE Bug 1230752",
"url": "https://bugzilla.suse.com/1230752"
},
{
"category": "self",
"summary": "SUSE Bug 1230753",
"url": "https://bugzilla.suse.com/1230753"
},
{
"category": "self",
"summary": "SUSE Bug 1230756",
"url": "https://bugzilla.suse.com/1230756"
},
{
"category": "self",
"summary": "SUSE Bug 1230761",
"url": "https://bugzilla.suse.com/1230761"
},
{
"category": "self",
"summary": "SUSE Bug 1230766",
"url": "https://bugzilla.suse.com/1230766"
},
{
"category": "self",
"summary": "SUSE Bug 1230767",
"url": "https://bugzilla.suse.com/1230767"
},
{
"category": "self",
"summary": "SUSE Bug 1230768",
"url": "https://bugzilla.suse.com/1230768"
},
{
"category": "self",
"summary": "SUSE Bug 1230771",
"url": "https://bugzilla.suse.com/1230771"
},
{
"category": "self",
"summary": "SUSE Bug 1230772",
"url": "https://bugzilla.suse.com/1230772"
},
{
"category": "self",
"summary": "SUSE Bug 1230775",
"url": "https://bugzilla.suse.com/1230775"
},
{
"category": "self",
"summary": "SUSE Bug 1230776",
"url": "https://bugzilla.suse.com/1230776"
},
{
"category": "self",
"summary": "SUSE Bug 1230780",
"url": "https://bugzilla.suse.com/1230780"
},
{
"category": "self",
"summary": "SUSE Bug 1230783",
"url": "https://bugzilla.suse.com/1230783"
},
{
"category": "self",
"summary": "SUSE Bug 1230786",
"url": "https://bugzilla.suse.com/1230786"
},
{
"category": "self",
"summary": "SUSE Bug 1230787",
"url": "https://bugzilla.suse.com/1230787"
},
{
"category": "self",
"summary": "SUSE Bug 1230791",
"url": "https://bugzilla.suse.com/1230791"
},
{
"category": "self",
"summary": "SUSE Bug 1230794",
"url": "https://bugzilla.suse.com/1230794"
},
{
"category": "self",
"summary": "SUSE Bug 1230796",
"url": "https://bugzilla.suse.com/1230796"
},
{
"category": "self",
"summary": "SUSE Bug 1230802",
"url": "https://bugzilla.suse.com/1230802"
},
{
"category": "self",
"summary": "SUSE Bug 1230806",
"url": "https://bugzilla.suse.com/1230806"
},
{
"category": "self",
"summary": "SUSE Bug 1230808",
"url": "https://bugzilla.suse.com/1230808"
},
{
"category": "self",
"summary": "SUSE Bug 1230809",
"url": "https://bugzilla.suse.com/1230809"
},
{
"category": "self",
"summary": "SUSE Bug 1230810",
"url": "https://bugzilla.suse.com/1230810"
},
{
"category": "self",
"summary": "SUSE Bug 1230812",
"url": "https://bugzilla.suse.com/1230812"
},
{
"category": "self",
"summary": "SUSE Bug 1230813",
"url": "https://bugzilla.suse.com/1230813"
},
{
"category": "self",
"summary": "SUSE Bug 1230814",
"url": "https://bugzilla.suse.com/1230814"
},
{
"category": "self",
"summary": "SUSE Bug 1230815",
"url": "https://bugzilla.suse.com/1230815"
},
{
"category": "self",
"summary": "SUSE Bug 1230821",
"url": "https://bugzilla.suse.com/1230821"
},
{
"category": "self",
"summary": "SUSE Bug 1230825",
"url": "https://bugzilla.suse.com/1230825"
},
{
"category": "self",
"summary": "SUSE Bug 1230830",
"url": "https://bugzilla.suse.com/1230830"
},
{
"category": "self",
"summary": "SUSE Bug 1230831",
"url": "https://bugzilla.suse.com/1230831"
},
{
"category": "self",
"summary": "SUSE Bug 1230854",
"url": "https://bugzilla.suse.com/1230854"
},
{
"category": "self",
"summary": "SUSE Bug 1230948",
"url": "https://bugzilla.suse.com/1230948"
},
{
"category": "self",
"summary": "SUSE Bug 1231008",
"url": "https://bugzilla.suse.com/1231008"
},
{
"category": "self",
"summary": "SUSE Bug 1231035",
"url": "https://bugzilla.suse.com/1231035"
},
{
"category": "self",
"summary": "SUSE Bug 1231120",
"url": "https://bugzilla.suse.com/1231120"
},
{
"category": "self",
"summary": "SUSE Bug 1231146",
"url": "https://bugzilla.suse.com/1231146"
},
{
"category": "self",
"summary": "SUSE Bug 1231182",
"url": "https://bugzilla.suse.com/1231182"
},
{
"category": "self",
"summary": "SUSE Bug 1231183",
"url": "https://bugzilla.suse.com/1231183"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52610 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52610/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52915 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52916 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26640 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26804 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36953 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38596 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-38632 page",
"url": "https://www.suse.com/security/cve/CVE-2024-38632/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40973 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-40983 page",
"url": "https://www.suse.com/security/cve/CVE-2024-40983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42243 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42265 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42265/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42294 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42304 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42305 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42306 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43828 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43832 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43835 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43845 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43870 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43870/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43890 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43898 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43904 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-43914 page",
"url": "https://www.suse.com/security/cve/CVE-2024-43914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44935 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44946 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44947 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44948 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44950 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44951 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44952 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44954 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44960 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44960/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44961 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44961/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44962 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44965 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44967 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44967/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44969 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44969/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44970 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44970/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44971 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44971/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44977 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44982 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44984 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44985 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44986 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44987 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44988 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44989 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44990 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44991 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44997 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44998 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-44999 page",
"url": "https://www.suse.com/security/cve/CVE-2024-44999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45000 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45001 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45003 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45007 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45007/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45008 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45011 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45012 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45012/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45013 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45015 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45017 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45019 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45022 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45023 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45026 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45028 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45028/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45029 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45029/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45030 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46672 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46672/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46673 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46674 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46674/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46677 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46679 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46685 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46686 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46687 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46689 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46691 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46692 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46693 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46694 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46694/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46695 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46695/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46702 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46706 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46707 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46709 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46709/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46710 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46710/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46714 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46715 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46716 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46716/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46717 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46717/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46719 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46720 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46722 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46723 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46723/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46724 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46726 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46728 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46729 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46730 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46730/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46731 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46731/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46732 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46734 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46735 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46737 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46737/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46738 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46738/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46739 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46739/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46741 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46743 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46745 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46745/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46746 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46747 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46749 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46750 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46751 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46752 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46755 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46755/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46756 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46756/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46757 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46758 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46759 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46760 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46761 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46761/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46767 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46771 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46772 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46773 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46774 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46776 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46778 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46780 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46781 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46781/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46783 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46784 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46787 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46791 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46794 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46797 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46798 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-46822 page",
"url": "https://www.suse.com/security/cve/CVE-2024-46822/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2025-02-03T09:05:12Z",
"generator": {
"date": "2025-02-03T09:05:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20077-1",
"initial_release_date": "2025-02-03T09:05:12Z",
"revision_history": [
{
"date": "2025-02-03T09:05:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-11.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-11.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-11.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-11.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-11.1.noarch",
"product_id": "kernel-source-rt-6.4.0-11.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"product_id": "kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-11.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-11.1.x86_64",
"product_id": "kernel-rt-6.4.0-11.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-11.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-11.1.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-11.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-11.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-11.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-11.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.4.0-11.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.4.0-11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-11.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-11.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-52610",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52610"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ct: fix skb leak and crash on ooo frags\n\nact_ct adds skb-\u003eusers before defragmentation. If frags arrive in order,\nthe last frag\u0027s reference is reset in:\n\n inet_frag_reasm_prepare\n skb_morph\n\nwhich is not straightforward.\n\nHowever when frags arrive out of order, nobody unref the last frag, and\nall frags are leaked. The situation is even worse, as initiating packet\ncapture can lead to a crash[0] when skb has been cloned and shared at the\nsame time.\n\nFix the issue by removing skb_get() before defragmentation. act_ct\nreturns TC_ACT_CONSUMED when defrag failed or in progress.\n\n[0]:\n[ 843.804823] ------------[ cut here ]------------\n[ 843.809659] kernel BUG at net/core/skbuff.c:2091!\n[ 843.814516] invalid opcode: 0000 [#1] PREEMPT SMP\n[ 843.819296] CPU: 7 PID: 0 Comm: swapper/7 Kdump: loaded Tainted: G S 6.7.0-rc3 #2\n[ 843.824107] Hardware name: XFUSION 1288H V6/BC13MBSBD, BIOS 1.29 11/25/2022\n[ 843.828953] RIP: 0010:pskb_expand_head+0x2ac/0x300\n[ 843.833805] Code: 8b 70 28 48 85 f6 74 82 48 83 c6 08 bf 01 00 00 00 e8 38 bd ff ff 8b 83 c0 00 00 00 48 03 83 c8 00 00 00 e9 62 ff ff ff 0f 0b \u003c0f\u003e 0b e8 8d d0 ff ff e9 b3 fd ff ff 81 7c 24 14 40 01 00 00 4c 89\n[ 843.843698] RSP: 0018:ffffc9000cce07c0 EFLAGS: 00010202\n[ 843.848524] RAX: 0000000000000002 RBX: ffff88811a211d00 RCX: 0000000000000820\n[ 843.853299] RDX: 0000000000000640 RSI: 0000000000000000 RDI: ffff88811a211d00\n[ 843.857974] RBP: ffff888127d39518 R08: 00000000bee97314 R09: 0000000000000000\n[ 843.862584] R10: 0000000000000000 R11: ffff8881109f0000 R12: 0000000000000880\n[ 843.867147] R13: ffff888127d39580 R14: 0000000000000640 R15: ffff888170f7b900\n[ 843.871680] FS: 0000000000000000(0000) GS:ffff889ffffc0000(0000) knlGS:0000000000000000\n[ 843.876242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 843.880778] CR2: 00007fa42affcfb8 CR3: 000000011433a002 CR4: 0000000000770ef0\n[ 843.885336] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 843.889809] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 843.894229] PKRU: 55555554\n[ 843.898539] Call Trace:\n[ 843.902772] \u003cIRQ\u003e\n[ 843.906922] ? __die_body+0x1e/0x60\n[ 843.911032] ? die+0x3c/0x60\n[ 843.915037] ? do_trap+0xe2/0x110\n[ 843.918911] ? pskb_expand_head+0x2ac/0x300\n[ 843.922687] ? do_error_trap+0x65/0x80\n[ 843.926342] ? pskb_expand_head+0x2ac/0x300\n[ 843.929905] ? exc_invalid_op+0x50/0x60\n[ 843.933398] ? pskb_expand_head+0x2ac/0x300\n[ 843.936835] ? asm_exc_invalid_op+0x1a/0x20\n[ 843.940226] ? pskb_expand_head+0x2ac/0x300\n[ 843.943580] inet_frag_reasm_prepare+0xd1/0x240\n[ 843.946904] ip_defrag+0x5d4/0x870\n[ 843.950132] nf_ct_handle_fragments+0xec/0x130 [nf_conntrack]\n[ 843.953334] tcf_ct_act+0x252/0xd90 [act_ct]\n[ 843.956473] ? tcf_mirred_act+0x516/0x5a0 [act_mirred]\n[ 843.959657] tcf_action_exec+0xa1/0x160\n[ 843.962823] fl_classify+0x1db/0x1f0 [cls_flower]\n[ 843.966010] ? skb_clone+0x53/0xc0\n[ 843.969173] tcf_classify+0x24d/0x420\n[ 843.972333] tc_run+0x8f/0xf0\n[ 843.975465] __netif_receive_skb_core+0x67a/0x1080\n[ 843.978634] ? dev_gro_receive+0x249/0x730\n[ 843.981759] __netif_receive_skb_list_core+0x12d/0x260\n[ 843.984869] netif_receive_skb_list_internal+0x1cb/0x2f0\n[ 843.987957] ? mlx5e_handle_rx_cqe_mpwrq_rep+0xfa/0x1a0 [mlx5_core]\n[ 843.991170] napi_complete_done+0x72/0x1a0\n[ 843.994305] mlx5e_napi_poll+0x28c/0x6d0 [mlx5_core]\n[ 843.997501] __napi_poll+0x25/0x1b0\n[ 844.000627] net_rx_action+0x256/0x330\n[ 844.003705] __do_softirq+0xb3/0x29b\n[ 844.006718] irq_exit_rcu+0x9e/0xc0\n[ 844.009672] common_interrupt+0x86/0xa0\n[ 844.012537] \u003c/IRQ\u003e\n[ 844.015285] \u003cTASK\u003e\n[ 844.017937] asm_common_interrupt+0x26/0x40\n[ 844.020591] RIP: 0010:acpi_safe_halt+0x1b/0x20\n[ 844.023247] Code: ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 65 48 8b 04 25 00 18 03 00 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 81 d0 44 00 fb\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52610",
"url": "https://www.suse.com/security/cve/CVE-2023-52610"
},
{
"category": "external",
"summary": "SUSE Bug 1221610 for CVE-2023-52610",
"url": "https://bugzilla.suse.com/1221610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix use-after-free bug in cifs_debug_data_proc_show()\n\nSkip SMB sessions that are being teared down\n(e.g. @ses-\u003eses_status == SES_EXITING) in cifs_debug_data_proc_show()\nto avoid use-after-free in @ses.\n\nThis fixes the following GPF when reading from /proc/fs/cifs/DebugData\nwhile mounting and umounting\n\n [ 816.251274] general protection fault, probably for non-canonical\n address 0x6b6b6b6b6b6b6d81: 0000 [#1] PREEMPT SMP NOPTI\n ...\n [ 816.260138] Call Trace:\n [ 816.260329] \u003cTASK\u003e\n [ 816.260499] ? die_addr+0x36/0x90\n [ 816.260762] ? exc_general_protection+0x1b3/0x410\n [ 816.261126] ? asm_exc_general_protection+0x26/0x30\n [ 816.261502] ? cifs_debug_tcon+0xbd/0x240 [cifs]\n [ 816.261878] ? cifs_debug_tcon+0xab/0x240 [cifs]\n [ 816.262249] cifs_debug_data_proc_show+0x516/0xdb0 [cifs]\n [ 816.262689] ? seq_read_iter+0x379/0x470\n [ 816.262995] seq_read_iter+0x118/0x470\n [ 816.263291] proc_reg_read_iter+0x53/0x90\n [ 816.263596] ? srso_alias_return_thunk+0x5/0x7f\n [ 816.263945] vfs_read+0x201/0x350\n [ 816.264211] ksys_read+0x75/0x100\n [ 816.264472] do_syscall_64+0x3f/0x90\n [ 816.264750] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n [ 816.265135] RIP: 0033:0x7fd5e669d381",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52752",
"url": "https://www.suse.com/security/cve/CVE-2023-52752"
},
{
"category": "external",
"summary": "SUSE Bug 1225487 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225487"
},
{
"category": "external",
"summary": "SUSE Bug 1225819 for CVE-2023-52752",
"url": "https://bugzilla.suse.com/1225819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "important"
}
],
"title": "CVE-2023-52752"
},
{
"cve": "CVE-2023-52915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52915"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer\n\nIn af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9035_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52915",
"url": "https://www.suse.com/security/cve/CVE-2023-52915"
},
{
"category": "external",
"summary": "SUSE Bug 1230270 for CVE-2023-52915",
"url": "https://bugzilla.suse.com/1230270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2023-52915"
},
{
"cve": "CVE-2023-52916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52916"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: aspeed: Fix memory overwrite if timing is 1600x900\n\nWhen capturing 1600x900, system could crash when system memory usage is\ntight.\n\nThe way to reproduce this issue:\n1. Use 1600x900 to display on host\n2. Mount ISO through \u0027Virtual media\u0027 on OpenBMC\u0027s web\n3. Run script as below on host to do sha continuously\n #!/bin/bash\n while [ [1] ];\n do\n\tfind /media -type f -printf \u0027\"%h/%f\"\\n\u0027 | xargs sha256sum\n done\n4. Open KVM on OpenBMC\u0027s web\n\nThe size of macro block captured is 8x8. Therefore, we should make sure\nthe height of src-buf is 8 aligned to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52916",
"url": "https://www.suse.com/security/cve/CVE-2023-52916"
},
{
"category": "external",
"summary": "SUSE Bug 1230269 for CVE-2023-52916",
"url": "https://bugzilla.suse.com/1230269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2023-52916"
},
{
"cve": "CVE-2024-26640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26640"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: add sanity checks to rx zerocopy\n\nTCP rx zerocopy intent is to map pages initially allocated\nfrom NIC drivers, not pages owned by a fs.\n\nThis patch adds to can_map_frag() these additional checks:\n\n- Page must not be a compound one.\n- page-\u003emapping must be NULL.\n\nThis fixes the panic reported by ZhangPeng.\n\nsyzbot was able to loopback packets built with sendfile(),\nmapping pages owned by an ext4 file to TCP rx zerocopy.\n\nr3 = socket$inet_tcp(0x2, 0x1, 0x0)\nmmap(\u0026(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)\nr4 = socket$inet_tcp(0x2, 0x1, 0x0)\nbind$inet(r4, \u0026(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10)\nconnect$inet(r4, \u0026(0x7f00000006c0)={0x2, 0x4e24, @empty}, 0x10)\nr5 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)\nfallocate(r5, 0x0, 0x0, 0x85b8)\nsendfile(r4, r5, 0x0, 0x8ba0)\ngetsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23,\n \u0026(0x7f00000001c0)={\u0026(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0,\n 0x0, 0x0, 0x0, 0x0}, \u0026(0x7f0000000440)=0x40)\nr6 = openat$dir(0xffffffffffffff9c, \u0026(0x7f00000000c0)=\u0027./file0\\x00\u0027,\n 0x181e42, 0x0)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26640",
"url": "https://www.suse.com/security/cve/CVE-2024-26640"
},
{
"category": "external",
"summary": "SUSE Bug 1221650 for CVE-2024-26640",
"url": "https://bugzilla.suse.com/1221650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-26640"
},
{
"cve": "CVE-2024-26759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/swap: fix race when skipping swapcache\n\nWhen skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads\nswapin the same entry at the same time, they get different pages (A, B). \nBefore one thread (T0) finishes the swapin and installs page (A) to the\nPTE, another thread (T1) could finish swapin of page (B), swap_free the\nentry, then swap out the possibly modified page reusing the same entry. \nIt breaks the pte_same check in (T0) because PTE value is unchanged,\ncausing ABA problem. Thread (T0) will install a stalled page (A) into the\nPTE and cause data corruption.\n\nOne possible callstack is like this:\n\nCPU0 CPU1\n---- ----\ndo_swap_page() do_swap_page() with same entry\n\u003cdirect swapin path\u003e \u003cdirect swapin path\u003e\n\u003calloc page A\u003e \u003calloc page B\u003e\nswap_read_folio() \u003c- read to page A swap_read_folio() \u003c- read to page B\n\u003cslow on later locks or interrupt\u003e \u003cfinished swapin first\u003e\n... set_pte_at()\n swap_free() \u003c- entry is free\n \u003cwrite to page B, now page A stalled\u003e\n \u003cswap out page B to same swap entry\u003e\npte_same() \u003c- Check pass, PTE seems\n unchanged, but page A\n is stalled!\nswap_free() \u003c- page B content lost!\nset_pte_at() \u003c- staled page A installed!\n\nAnd besides, for ZRAM, swap_free() allows the swap device to discard the\nentry content, so even if page (B) is not modified, if swap_read_folio()\non CPU0 happens later than swap_free() on CPU1, it may also cause data\nloss.\n\nTo fix this, reuse swapcache_prepare which will pin the swap entry using\nthe cache flag, and allow only one thread to swap it in, also prevent any\nparallel code from putting the entry in the cache. Release the pin after\nPT unlocked.\n\nRacers just loop and wait since it\u0027s a rare and very short event. A\nschedule_timeout_uninterruptible(1) call is added to avoid repeated page\nfaults wasting too much CPU, causing livelock or adding too much noise to\nperf statistics. A similar livelock issue was described in commit\n029c4628b2eb (\"mm: swap: get rid of livelock in swapin readahead\")\n\nReproducer:\n\nThis race issue can be triggered easily using a well constructed\nreproducer and patched brd (with a delay in read path) [1]:\n\nWith latest 6.8 mainline, race caused data loss can be observed easily:\n$ gcc -g -lpthread test-thread-swap-race.c \u0026\u0026 ./a.out\n Polulating 32MB of memory region...\n Keep swapping out...\n Starting round 0...\n Spawning 65536 workers...\n 32746 workers spawned, wait for done...\n Round 0: Error on 0x5aa00, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x395200, expected 32746, got 32743, 3 data loss!\n Round 0: Error on 0x3fd000, expected 32746, got 32737, 9 data loss!\n Round 0 Failed, 15 data loss!\n\nThis reproducer spawns multiple threads sharing the same memory region\nusing a small swap device. Every two threads updates mapped pages one by\none in opposite direction trying to create a race, with one dedicated\nthread keep swapping out the data out using madvise.\n\nThe reproducer created a reproduce rate of about once every 5 minutes, so\nthe race should be totally possible in production.\n\nAfter this patch, I ran the reproducer for over a few hundred rounds and\nno data loss observed.\n\nPerformance overhead is minimal, microbenchmark swapin 10G from 32G\nzram:\n\nBefore: 10934698 us\nAfter: 11157121 us\nCached: 13155355 us (Dropping SWP_SYNCHRONOUS_IO flag)\n\n[kasong@tencent.com: v4]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26759",
"url": "https://www.suse.com/security/cve/CVE-2024-26759"
},
{
"category": "external",
"summary": "SUSE Bug 1230340 for CVE-2024-26759",
"url": "https://bugzilla.suse.com/1230340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: prevent perpetual headroom growth\n\nsyzkaller triggered following kasan splat:\nBUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\nRead of size 1 at addr ffff88812fb4000e by task syz-executor183/5191\n[..]\n kasan_report+0xda/0x110 mm/kasan/report.c:588\n __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector.c:1170\n skb_flow_dissect_flow_keys include/linux/skbuff.h:1514 [inline]\n ___skb_get_hash net/core/flow_dissector.c:1791 [inline]\n __skb_get_hash+0xc7/0x540 net/core/flow_dissector.c:1856\n skb_get_hash include/linux/skbuff.h:1556 [inline]\n ip_tunnel_xmit+0x1855/0x33c0 net/ipv4/ip_tunnel.c:748\n ipip_tunnel_xmit+0x3cc/0x4e0 net/ipv4/ipip.c:308\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n __dev_queue_xmit+0x7c1/0x3d60 net/core/dev.c:4349\n dev_queue_xmit include/linux/netdevice.h:3134 [inline]\n neigh_connected_output+0x42c/0x5d0 net/core/neighbour.c:1592\n ...\n ip_finish_output2+0x833/0x2550 net/ipv4/ip_output.c:235\n ip_finish_output+0x31/0x310 net/ipv4/ip_output.c:323\n ..\n iptunnel_xmit+0x5b4/0x9b0 net/ipv4/ip_tunnel_core.c:82\n ip_tunnel_xmit+0x1dbc/0x33c0 net/ipv4/ip_tunnel.c:831\n ipgre_xmit+0x4a1/0x980 net/ipv4/ip_gre.c:665\n __netdev_start_xmit include/linux/netdevice.h:4940 [inline]\n netdev_start_xmit include/linux/netdevice.h:4954 [inline]\n xmit_one net/core/dev.c:3548 [inline]\n dev_hard_start_xmit+0x13d/0x6d0 net/core/dev.c:3564\n ...\n\nThe splat occurs because skb-\u003edata points past skb-\u003ehead allocated area.\nThis is because neigh layer does:\n __skb_pull(skb, skb_network_offset(skb));\n\n... but skb_network_offset() returns a negative offset and __skb_pull()\narg is unsigned. IOW, we skb-\u003edata gets \"adjusted\" by a huge value.\n\nThe negative value is returned because skb-\u003ehead and skb-\u003edata distance is\nmore than 64k and skb-\u003enetwork_header (u16) has wrapped around.\n\nThe bug is in the ip_tunnel infrastructure, which can cause\ndev-\u003eneeded_headroom to increment ad infinitum.\n\nThe syzkaller reproducer consists of packets getting routed via a gre\ntunnel, and route of gre encapsulated packets pointing at another (ipip)\ntunnel. The ipip encapsulation finds gre0 as next output device.\n\nThis results in the following pattern:\n\n1). First packet is to be sent out via gre0.\nRoute lookup found an output device, ipip0.\n\n2).\nip_tunnel_xmit for gre0 bumps gre0-\u003eneeded_headroom based on the future\noutput device, rt.dev-\u003eneeded_headroom (ipip0).\n\n3).\nip output / start_xmit moves skb on to ipip0. which runs the same\ncode path again (xmit recursion).\n\n4).\nRouting step for the post-gre0-encap packet finds gre0 as output device\nto use for ipip0 encapsulated packet.\n\ntunl0-\u003eneeded_headroom is then incremented based on the (already bumped)\ngre0 device headroom.\n\nThis repeats for every future packet:\n\ngre0-\u003eneeded_headroom gets inflated because previous packets\u0027 ipip0 step\nincremented rt-\u003edev (gre0) headroom, and ipip0 incremented because gre0\nneeded_headroom was increased.\n\nFor each subsequent packet, gre/ipip0-\u003eneeded_headroom grows until\npost-expand-head reallocations result in a skb-\u003ehead/data distance of\nmore than 64k.\n\nOnce that happens, skb-\u003enetwork_header (u16) wraps around when\npskb_expand_head tries to make sure that skb_network_offset() is unchanged\nafter the headroom expansion/reallocation.\n\nAfter this skb_network_offset(skb) returns a different (and negative)\nresult post headroom expansion.\n\nThe next trip to neigh layer (or anything else that would __skb_pull the\nnetwork header) makes skb-\u003edata point to a memory location outside\nskb-\u003ehead area.\n\nv2: Cap the needed_headroom update to an arbitarily chosen upperlimit to\nprevent perpetual increase instead of dropping the headroom increment\ncompletely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26804",
"url": "https://www.suse.com/security/cve/CVE-2024-26804"
},
{
"category": "external",
"summary": "SUSE Bug 1222629 for CVE-2024-26804",
"url": "https://bugzilla.suse.com/1222629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-36953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36953"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()\n\nvgic_v2_parse_attr() is responsible for finding the vCPU that matches\nthe user-provided CPUID, which (of course) may not be valid. If the ID\nis invalid, kvm_get_vcpu_by_id() returns NULL, which isn\u0027t handled\ngracefully.\n\nSimilar to the GICv3 uaccess flow, check that kvm_get_vcpu_by_id()\nactually returns something and fail the ioctl if not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36953",
"url": "https://www.suse.com/security/cve/CVE-2024-36953"
},
{
"category": "external",
"summary": "SUSE Bug 1225812 for CVE-2024-36953",
"url": "https://bugzilla.suse.com/1225812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-36953"
},
{
"cve": "CVE-2024-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: xmit: make sure we have at least eth header len bytes\n\nsyzbot triggered an uninit value[1] error in bridge device\u0027s xmit path\nby sending a short (less than ETH_HLEN bytes) skb. To fix it check if\nwe can actually pull that amount instead of assuming.\n\nTested with dropwatch:\n drop at: br_dev_xmit+0xb93/0x12d0 [bridge] (0xffffffffc06739b3)\n origin: software\n timestamp: Mon May 13 11:31:53 2024 778214037 nsec\n protocol: 0x88a8\n length: 2\n original length: 2\n drop reason: PKT_TOO_SMALL\n\n[1]\nBUG: KMSAN: uninit-value in br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n br_dev_xmit+0x61d/0x1cb0 net/bridge/br_device.c:65\n __netdev_start_xmit include/linux/netdevice.h:4903 [inline]\n netdev_start_xmit include/linux/netdevice.h:4917 [inline]\n xmit_one net/core/dev.c:3531 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3547\n __dev_queue_xmit+0x34db/0x5350 net/core/dev.c:4341\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n __bpf_tx_skb net/core/filter.c:2136 [inline]\n __bpf_redirect_common net/core/filter.c:2180 [inline]\n __bpf_redirect+0x14a6/0x1620 net/core/filter.c:2187\n ____bpf_clone_redirect net/core/filter.c:2460 [inline]\n bpf_clone_redirect+0x328/0x470 net/core/filter.c:2432\n ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997\n __bpf_prog_run512+0xb5/0xe0 kernel/bpf/core.c:2238\n bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]\n __bpf_prog_run include/linux/filter.h:657 [inline]\n bpf_prog_run include/linux/filter.h:664 [inline]\n bpf_test_run+0x499/0xc30 net/bpf/test_run.c:425\n bpf_prog_test_run_skb+0x14ea/0x1f20 net/bpf/test_run.c:1058\n bpf_prog_test_run+0x6b7/0xad0 kernel/bpf/syscall.c:4269\n __sys_bpf+0x6aa/0xd90 kernel/bpf/syscall.c:5678\n __do_sys_bpf kernel/bpf/syscall.c:5767 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5765 [inline]\n __x64_sys_bpf+0xa0/0xe0 kernel/bpf/syscall.c:5765\n x64_sys_call+0x96b/0x3b50 arch/x86/include/generated/asm/syscalls_64.h:322\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38538",
"url": "https://www.suse.com/security/cve/CVE-2024-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1226606 for CVE-2024-38538",
"url": "https://bugzilla.suse.com/1226606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-38538"
},
{
"cve": "CVE-2024-38596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38596"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data races in unix_release_sock/unix_stream_sendmsg\n\nA data-race condition has been identified in af_unix. In one data path,\nthe write function unix_release_sock() atomically writes to\nsk-\u003esk_shutdown using WRITE_ONCE. However, on the reader side,\nunix_stream_sendmsg() does not read it atomically. Consequently, this\nissue is causing the following KCSAN splat to occur:\n\n\tBUG: KCSAN: data-race in unix_release_sock / unix_stream_sendmsg\n\n\twrite (marked) to 0xffff88867256ddbb of 1 bytes by task 7270 on cpu 28:\n\tunix_release_sock (net/unix/af_unix.c:640)\n\tunix_release (net/unix/af_unix.c:1050)\n\tsock_close (net/socket.c:659 net/socket.c:1421)\n\t__fput (fs/file_table.c:422)\n\t__fput_sync (fs/file_table.c:508)\n\t__se_sys_close (fs/open.c:1559 fs/open.c:1541)\n\t__x64_sys_close (fs/open.c:1541)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tread to 0xffff88867256ddbb of 1 bytes by task 989 on cpu 14:\n\tunix_stream_sendmsg (net/unix/af_unix.c:2273)\n\t__sock_sendmsg (net/socket.c:730 net/socket.c:745)\n\t____sys_sendmsg (net/socket.c:2584)\n\t__sys_sendmmsg (net/socket.c:2638 net/socket.c:2724)\n\t__x64_sys_sendmmsg (net/socket.c:2753 net/socket.c:2750 net/socket.c:2750)\n\tx64_sys_call (arch/x86/entry/syscall_64.c:33)\n\tdo_syscall_64 (arch/x86/entry/common.c:?)\n\tentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n\n\tvalue changed: 0x01 -\u003e 0x03\n\nThe line numbers are related to commit dd5a440a31fa (\"Linux 6.9-rc7\").\n\nCommit e1d09c2c2f57 (\"af_unix: Fix data races around sk-\u003esk_shutdown.\")\naddressed a comparable issue in the past regarding sk-\u003esk_shutdown.\nHowever, it overlooked resolving this particular data path.\nThis patch only offending unix_stream_sendmsg() function, since the\nother reads seem to be protected by unix_state_lock() as discussed in",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38596",
"url": "https://www.suse.com/security/cve/CVE-2024-38596"
},
{
"category": "external",
"summary": "SUSE Bug 1226846 for CVE-2024-38596",
"url": "https://bugzilla.suse.com/1226846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-38596"
},
{
"cve": "CVE-2024-38632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-38632"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/pci: fix potential memory leak in vfio_intx_enable()\n\nIf vfio_irq_ctx_alloc() failed will lead to \u0027name\u0027 memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-38632",
"url": "https://www.suse.com/security/cve/CVE-2024-38632"
},
{
"category": "external",
"summary": "SUSE Bug 1226860 for CVE-2024-38632",
"url": "https://bugzilla.suse.com/1226860"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-38632"
},
{
"cve": "CVE-2024-40965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40965",
"url": "https://www.suse.com/security/cve/CVE-2024-40965"
},
{
"category": "external",
"summary": "SUSE Bug 1227885 for CVE-2024-40965",
"url": "https://bugzilla.suse.com/1227885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-40965"
},
{
"cve": "CVE-2024-40973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40973"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-vcodec: potential null pointer deference in SCP\n\nThe return value of devm_kzalloc() needs to be checked to avoid\nNULL pointer deference. This is similar to CVE-2022-3113.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40973",
"url": "https://www.suse.com/security/cve/CVE-2024-40973"
},
{
"category": "external",
"summary": "SUSE Bug 1227890 for CVE-2024-40973",
"url": "https://bugzilla.suse.com/1227890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-40973"
},
{
"cve": "CVE-2024-40983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-40983"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: force a dst refcount before doing decryption\n\nAs it says in commit 3bc07321ccc2 (\"xfrm: Force a dst refcount before\nentering the xfrm type handlers\"):\n\n\"Crypto requests might return asynchronous. In this case we leave the\n rcu protected region, so force a refcount on the skb\u0027s destination\n entry before we enter the xfrm type input/output handlers.\"\n\nOn TIPC decryption path it has the same problem, and skb_dst_force()\nshould be called before doing decryption to avoid a possible crash.\n\nShuang reported this issue when this warning is triggered:\n\n [] WARNING: include/net/dst.h:337 tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Kdump: loaded Tainted: G W --------- - - 4.18.0-496.el8.x86_64+debug\n [] Workqueue: crypto cryptd_queue_worker\n [] RIP: 0010:tipc_sk_rcv+0x1055/0x1ea0 [tipc]\n [] Call Trace:\n [] tipc_sk_mcast_rcv+0x548/0xea0 [tipc]\n [] tipc_rcv+0xcf5/0x1060 [tipc]\n [] tipc_aead_decrypt_done+0x215/0x2e0 [tipc]\n [] cryptd_aead_crypt+0xdb/0x190\n [] cryptd_queue_worker+0xed/0x190\n [] process_one_work+0x93d/0x17e0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-40983",
"url": "https://www.suse.com/security/cve/CVE-2024-40983"
},
{
"category": "external",
"summary": "SUSE Bug 1227819 for CVE-2024-40983",
"url": "https://bugzilla.suse.com/1227819"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-40983"
},
{
"cve": "CVE-2024-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_metrics: validate source addr length\n\nI don\u0027t see anything checking that TCP_METRICS_ATTR_SADDR_IPV4\nis at least 4 bytes long, and the policy doesn\u0027t have an entry\nfor this attribute at all (neither does it for IPv6 but v6 is\nmanually validated).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42154",
"url": "https://www.suse.com/security/cve/CVE-2024-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1228507 for CVE-2024-42154",
"url": "https://bugzilla.suse.com/1228507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42154"
},
{
"cve": "CVE-2024-42243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray\n\nPatch series \"mm/filemap: Limit page cache size to that supported by\nxarray\", v2.\n\nCurrently, xarray can\u0027t support arbitrary page cache size. More details\ncan be found from the WARN_ON() statement in xas_split_alloc(). In our\ntest whose code is attached below, we hit the WARN_ON() on ARM64 system\nwhere the base page size is 64KB and huge page size is 512MB. The issue\nwas reported long time ago and some discussions on it can be found here\n[1].\n\n[1] https://www.spinics.net/lists/linux-xfs/msg75404.html\n\nIn order to fix the issue, we need to adjust MAX_PAGECACHE_ORDER to one\nsupported by xarray and avoid PMD-sized page cache if needed. The code\nchanges are suggested by David Hildenbrand.\n\nPATCH[1] adjusts MAX_PAGECACHE_ORDER to that supported by xarray\nPATCH[2-3] avoids PMD-sized page cache in the synchronous readahead path\nPATCH[4] avoids PMD-sized page cache for shmem files if needed\n\nTest program\n============\n# cat test.c\n#define _GNU_SOURCE\n#include \u003cstdio.h\u003e\n#include \u003cstdlib.h\u003e\n#include \u003cunistd.h\u003e\n#include \u003cstring.h\u003e\n#include \u003cfcntl.h\u003e\n#include \u003cerrno.h\u003e\n#include \u003csys/syscall.h\u003e\n#include \u003csys/mman.h\u003e\n\n#define TEST_XFS_FILENAME\t\"/tmp/data\"\n#define TEST_SHMEM_FILENAME\t\"/dev/shm/data\"\n#define TEST_MEM_SIZE\t\t0x20000000\n\nint main(int argc, char **argv)\n{\n\tconst char *filename;\n\tint fd = 0;\n\tvoid *buf = (void *)-1, *p;\n\tint pgsize = getpagesize();\n\tint ret;\n\n\tif (pgsize != 0x10000) {\n\t\tfprintf(stderr, \"64KB base page size is required\\n\");\n\t\treturn -EPERM;\n\t}\n\n\tsystem(\"echo force \u003e /sys/kernel/mm/transparent_hugepage/shmem_enabled\");\n\tsystem(\"rm -fr /tmp/data\");\n\tsystem(\"rm -fr /dev/shm/data\");\n\tsystem(\"echo 1 \u003e /proc/sys/vm/drop_caches\");\n\n\t/* Open xfs or shmem file */\n\tfilename = TEST_XFS_FILENAME;\n\tif (argc \u003e 1 \u0026\u0026 !strcmp(argv[1], \"shmem\"))\n\t\tfilename = TEST_SHMEM_FILENAME;\n\n\tfd = open(filename, O_CREAT | O_RDWR | O_TRUNC);\n\tif (fd \u003c 0) {\n\t\tfprintf(stderr, \"Unable to open \u003c%s\u003e\\n\", filename);\n\t\treturn -EIO;\n\t}\n\n\t/* Extend file size */\n\tret = ftruncate(fd, TEST_MEM_SIZE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to ftruncate()\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Create VMA */\n\tbuf = mmap(NULL, TEST_MEM_SIZE,\n\t\t PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);\n\tif (buf == (void *)-1) {\n\t\tfprintf(stderr, \"Unable to mmap \u003c%s\u003e\\n\", filename);\n\t\tgoto cleanup;\n\t}\n\n\tfprintf(stdout, \"mapped buffer at 0x%p\\n\", buf);\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_HUGEPAGE);\n if (ret) {\n\t\tfprintf(stderr, \"Unable to madvise(MADV_HUGEPAGE)\\n\");\n\t\tgoto cleanup;\n\t}\n\n\t/* Populate VMA */\n\tret = madvise(buf, TEST_MEM_SIZE, MADV_POPULATE_WRITE);\n\tif (ret) {\n\t\tfprintf(stderr, \"Error %d to madvise(MADV_POPULATE_WRITE)\\n\", ret);\n\t\tgoto cleanup;\n\t}\n\n\t/* Punch the file to enforce xarray split */\n\tret = fallocate(fd, FALLOC_FL_KEEP_SIZE | FALLOC_FL_PUNCH_HOLE,\n \t\tTEST_MEM_SIZE - pgsize, pgsize);\n\tif (ret)\n\t\tfprintf(stderr, \"Error %d to fallocate()\\n\", ret);\n\ncleanup:\n\tif (buf != (void *)-1)\n\t\tmunmap(buf, TEST_MEM_SIZE);\n\tif (fd \u003e 0)\n\t\tclose(fd);\n\n\treturn 0;\n}\n\n# gcc test.c -o test\n# cat /proc/1/smaps | grep KernelPageSize | head -n 1\nKernelPageSize: 64 kB\n# ./test shmem\n :\n------------[ cut here ]------------\nWARNING: CPU: 17 PID: 5253 at lib/xarray.c:1025 xas_split_alloc+0xf8/0x128\nModules linked in: nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib \\\nnft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct \\\nnft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 \\\nip_set nf_tables rfkill nfnetlink vfat fat virtio_balloon \\\ndrm fuse xfs libcrc32c crct10dif_ce ghash_ce sha2_ce sha256_arm64 \\\nvirtio_net sha1_ce net_failover failover virtio_console virtio_blk \\\ndimlib virtio_mmio\nCPU: 17 PID: 5253 Comm: test Kdump: loaded Tainted: G W 6.10.0-rc5-gavin+ #12\nHardware name: QEMU KVM Virtual Machine, BIOS edk2-20240524-1.el9 05/24/2024\npstate: 83400005 (Nzcv daif +PAN -UAO +TC\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42243",
"url": "https://www.suse.com/security/cve/CVE-2024-42243"
},
{
"category": "external",
"summary": "SUSE Bug 1229001 for CVE-2024-42243",
"url": "https://bugzilla.suse.com/1229001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42243"
},
{
"cve": "CVE-2024-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclosures: Change BUG_ON() to WARN_ON()\n\nIf a BUG_ON() can be hit in the wild, it shouldn\u0027t be a BUG_ON()\n\nFor reference, this has popped up once in the CI, and we\u0027ll need more\ninfo to debug it:\n\n03240 ------------[ cut here ]------------\n03240 kernel BUG at lib/closure.c:21!\n03240 kernel BUG at lib/closure.c:21!\n03240 Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n03240 Modules linked in:\n03240 CPU: 15 PID: 40534 Comm: kworker/u80:1 Not tainted 6.10.0-rc4-ktest-ga56da69799bd #25570\n03240 Hardware name: linux,dummy-virt (DT)\n03240 Workqueue: btree_update btree_interior_update_work\n03240 pstate: 00001005 (nzcv daif -PAN -UAO -TCO -DIT +SSBS BTYPE=--)\n03240 pc : closure_put+0x224/0x2a0\n03240 lr : closure_put+0x24/0x2a0\n03240 sp : ffff0000d12071c0\n03240 x29: ffff0000d12071c0 x28: dfff800000000000 x27: ffff0000d1207360\n03240 x26: 0000000000000040 x25: 0000000000000040 x24: 0000000000000040\n03240 x23: ffff0000c1f20180 x22: 0000000000000000 x21: ffff0000c1f20168\n03240 x20: 0000000040000000 x19: ffff0000c1f20140 x18: 0000000000000001\n03240 x17: 0000000000003aa0 x16: 0000000000003ad0 x15: 1fffe0001c326974\n03240 x14: 0000000000000a1e x13: 0000000000000000 x12: 1fffe000183e402d\n03240 x11: ffff6000183e402d x10: dfff800000000000 x9 : ffff6000183e402e\n03240 x8 : 0000000000000001 x7 : 00009fffe7c1bfd3 x6 : ffff0000c1f2016b\n03240 x5 : ffff0000c1f20168 x4 : ffff6000183e402e x3 : ffff800081391954\n03240 x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000a8000000\n03240 Call trace:\n03240 closure_put+0x224/0x2a0\n03240 bch2_check_for_deadlock+0x910/0x1028\n03240 bch2_six_check_for_deadlock+0x1c/0x30\n03240 six_lock_slowpath.isra.0+0x29c/0xed0\n03240 six_lock_ip_waiter+0xa8/0xf8\n03240 __bch2_btree_node_lock_write+0x14c/0x298\n03240 bch2_trans_lock_write+0x6d4/0xb10\n03240 __bch2_trans_commit+0x135c/0x5520\n03240 btree_interior_update_work+0x1248/0x1c10\n03240 process_scheduled_works+0x53c/0xd90\n03240 worker_thread+0x370/0x8c8\n03240 kthread+0x258/0x2e8\n03240 ret_from_fork+0x10/0x20\n03240 Code: aa1303e0 d63f0020 a94363f7 17ffff8c (d4210000)\n03240 ---[ end trace 0000000000000000 ]---\n03240 Kernel panic - not syncing: Oops - BUG: Fatal exception\n03240 SMP: stopping secondary CPUs\n03241 SMP: failed to stop secondary CPUs 13,15\n03241 Kernel Offset: disabled\n03241 CPU features: 0x00,00000003,80000008,4240500b\n03241 Memory Limit: none\n03241 ---[ end Kernel panic - not syncing: Oops - BUG: Fatal exception ]---\n03246 ========= FAILED TIMEOUT copygc_torture_no_checksum in 7200s",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42252",
"url": "https://www.suse.com/security/cve/CVE-2024-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1229004 for CVE-2024-42252",
"url": "https://bugzilla.suse.com/1229004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42252"
},
{
"cve": "CVE-2024-42265",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42265"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprotect the fetch of -\u003efd[fd] in do_dup2() from mispredictions\n\nboth callers have verified that fd is not greater than -\u003emax_fds;\nhowever, misprediction might end up with\n tofree = fdt-\u003efd[fd];\nbeing speculatively executed. That\u0027s wrong for the same reasons\nwhy it\u0027s wrong in close_fd()/file_close_fd_locked(); the same\nsolution applies - array_index_nospec(fd, fdt-\u003emax_fds) could differ\nfrom fd only in case of speculative execution on mispredicted path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42265",
"url": "https://www.suse.com/security/cve/CVE-2024-42265"
},
{
"category": "external",
"summary": "SUSE Bug 1229334 for CVE-2024-42265",
"url": "https://bugzilla.suse.com/1229334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42265"
},
{
"cve": "CVE-2024-42294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix deadlock between sd_remove \u0026 sd_release\n\nOur test report the following hung task:\n\n[ 2538.459400] INFO: task \"kworker/0:0\":7 blocked for more than 188 seconds.\n[ 2538.459427] Call trace:\n[ 2538.459430] __switch_to+0x174/0x338\n[ 2538.459436] __schedule+0x628/0x9c4\n[ 2538.459442] schedule+0x7c/0xe8\n[ 2538.459447] schedule_preempt_disabled+0x24/0x40\n[ 2538.459453] __mutex_lock+0x3ec/0xf04\n[ 2538.459456] __mutex_lock_slowpath+0x14/0x24\n[ 2538.459459] mutex_lock+0x30/0xd8\n[ 2538.459462] del_gendisk+0xdc/0x350\n[ 2538.459466] sd_remove+0x30/0x60\n[ 2538.459470] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459474] device_release_driver+0x18/0x28\n[ 2538.459478] bus_remove_device+0x15c/0x174\n[ 2538.459483] device_del+0x1d0/0x358\n[ 2538.459488] __scsi_remove_device+0xa8/0x198\n[ 2538.459493] scsi_forget_host+0x50/0x70\n[ 2538.459497] scsi_remove_host+0x80/0x180\n[ 2538.459502] usb_stor_disconnect+0x68/0xf4\n[ 2538.459506] usb_unbind_interface+0xd4/0x280\n[ 2538.459510] device_release_driver_internal+0x1c4/0x2c4\n[ 2538.459514] device_release_driver+0x18/0x28\n[ 2538.459518] bus_remove_device+0x15c/0x174\n[ 2538.459523] device_del+0x1d0/0x358\n[ 2538.459528] usb_disable_device+0x84/0x194\n[ 2538.459532] usb_disconnect+0xec/0x300\n[ 2538.459537] hub_event+0xb80/0x1870\n[ 2538.459541] process_scheduled_works+0x248/0x4dc\n[ 2538.459545] worker_thread+0x244/0x334\n[ 2538.459549] kthread+0x114/0x1bc\n\n[ 2538.461001] INFO: task \"fsck.\":15415 blocked for more than 188 seconds.\n[ 2538.461014] Call trace:\n[ 2538.461016] __switch_to+0x174/0x338\n[ 2538.461021] __schedule+0x628/0x9c4\n[ 2538.461025] schedule+0x7c/0xe8\n[ 2538.461030] blk_queue_enter+0xc4/0x160\n[ 2538.461034] blk_mq_alloc_request+0x120/0x1d4\n[ 2538.461037] scsi_execute_cmd+0x7c/0x23c\n[ 2538.461040] ioctl_internal_command+0x5c/0x164\n[ 2538.461046] scsi_set_medium_removal+0x5c/0xb0\n[ 2538.461051] sd_release+0x50/0x94\n[ 2538.461054] blkdev_put+0x190/0x28c\n[ 2538.461058] blkdev_release+0x28/0x40\n[ 2538.461063] __fput+0xf8/0x2a8\n[ 2538.461066] __fput_sync+0x28/0x5c\n[ 2538.461070] __arm64_sys_close+0x84/0xe8\n[ 2538.461073] invoke_syscall+0x58/0x114\n[ 2538.461078] el0_svc_common+0xac/0xe0\n[ 2538.461082] do_el0_svc+0x1c/0x28\n[ 2538.461087] el0_svc+0x38/0x68\n[ 2538.461090] el0t_64_sync_handler+0x68/0xbc\n[ 2538.461093] el0t_64_sync+0x1a8/0x1ac\n\n T1:\t\t\t\tT2:\n sd_remove\n del_gendisk\n __blk_mark_disk_dead\n blk_freeze_queue_start\n ++q-\u003emq_freeze_depth\n \t\t\t\tbdev_release\n \t\t\t\tmutex_lock(\u0026disk-\u003eopen_mutex)\n \t\t\t\tsd_release\n \t\t\t\tscsi_execute_cmd\n \t\t\t\tblk_queue_enter\n \t\t\t\twait_event(!q-\u003emq_freeze_depth)\n mutex_lock(\u0026disk-\u003eopen_mutex)\n\nSCSI does not set GD_OWNS_QUEUE, so QUEUE_FLAG_DYING is not set in\nthis scenario. This is a classic ABBA deadlock. To fix the deadlock,\nmake sure we don\u0027t try to acquire disk-\u003eopen_mutex after freezing\nthe queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42294",
"url": "https://www.suse.com/security/cve/CVE-2024-42294"
},
{
"category": "external",
"summary": "SUSE Bug 1229371 for CVE-2024-42294",
"url": "https://bugzilla.suse.com/1229371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42294"
},
{
"cve": "CVE-2024-42304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: make sure the first directory block is not a hole\n\nThe syzbot constructs a directory that has no dirblock but is non-inline,\ni.e. the first directory block is a hole. And no errors are reported when\ncreating files in this directory in the following flow.\n\n ext4_mknod\n ...\n ext4_add_entry\n // Read block 0\n ext4_read_dirblock(dir, block, DIRENT)\n bh = ext4_bread(NULL, inode, block, 0)\n if (!bh \u0026\u0026 (type == INDEX || type == DIRENT_HTREE))\n // The first directory block is a hole\n // But type == DIRENT, so no error is reported.\n\nAfter that, we get a directory block without \u0027.\u0027 and \u0027..\u0027 but with a valid\ndentry. This may cause some code that relies on dot or dotdot (such as\nmake_indexed_dir()) to crash.\n\nTherefore when ext4_read_dirblock() finds that the first directory block\nis a hole report that the filesystem is corrupted and return an error to\navoid loading corrupted data from disk causing something bad.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42304",
"url": "https://www.suse.com/security/cve/CVE-2024-42304"
},
{
"category": "external",
"summary": "SUSE Bug 1229364 for CVE-2024-42304",
"url": "https://bugzilla.suse.com/1229364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42304"
},
{
"cve": "CVE-2024-42305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: check dot and dotdot of dx_root before making dir indexed\n\nSyzbot reports a issue as follows:\n============================================\nBUG: unable to handle page fault for address: ffffed11022e24fe\nPGD 23ffee067 P4D 23ffee067 PUD 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 0 PID: 5079 Comm: syz-executor306 Not tainted 6.10.0-rc5-g55027e689933 #0\nCall Trace:\n \u003cTASK\u003e\n make_indexed_dir+0xdaf/0x13c0 fs/ext4/namei.c:2341\n ext4_add_entry+0x222a/0x25d0 fs/ext4/namei.c:2451\n ext4_rename fs/ext4/namei.c:3936 [inline]\n ext4_rename2+0x26e5/0x4370 fs/ext4/namei.c:4214\n[...]\n============================================\n\nThe immediate cause of this problem is that there is only one valid dentry\nfor the block to be split during do_split, so split==0 results in out of\nbounds accesses to the map triggering the issue.\n\n do_split\n unsigned split\n dx_make_map\n count = 1\n split = count/2 = 0;\n continued = hash2 == map[split - 1].hash;\n ---\u003e map[4294967295]\n\nThe maximum length of a filename is 255 and the minimum block size is 1024,\nso it is always guaranteed that the number of entries is greater than or\nequal to 2 when do_split() is called.\n\nBut syzbot\u0027s crafted image has no dot and dotdot in dir, and the dentry\ndistribution in dirblock is as follows:\n\n bus dentry1 hole dentry2 free\n|xx--|xx-------------|...............|xx-------------|...............|\n0 12 (8+248)=256 268 256 524 (8+256)=264 788 236 1024\n\nSo when renaming dentry1 increases its name_len length by 1, neither hole\nnor free is sufficient to hold the new dentry, and make_indexed_dir() is\ncalled.\n\nIn make_indexed_dir() it is assumed that the first two entries of the\ndirblock must be dot and dotdot, so bus and dentry1 are left in dx_root\nbecause they are treated as dot and dotdot, and only dentry2 is moved\nto the new leaf block. That\u0027s why count is equal to 1.\n\nTherefore add the ext4_check_dx_root() helper function to add more sanity\nchecks to dot and dotdot before starting the conversion to avoid the above\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42305",
"url": "https://www.suse.com/security/cve/CVE-2024-42305"
},
{
"category": "external",
"summary": "SUSE Bug 1229363 for CVE-2024-42305",
"url": "https://bugzilla.suse.com/1229363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42305"
},
{
"cve": "CVE-2024-42306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid using corrupted block bitmap buffer\n\nWhen the filesystem block bitmap is corrupted, we detect the corruption\nwhile loading the bitmap and fail the allocation with error. However the\nnext allocation from the same bitmap will notice the bitmap buffer is\nalready loaded and tries to allocate from the bitmap with mixed results\n(depending on the exact nature of the bitmap corruption). Fix the\nproblem by using BH_verified bit to indicate whether the bitmap is valid\nor not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42306",
"url": "https://www.suse.com/security/cve/CVE-2024-42306"
},
{
"category": "external",
"summary": "SUSE Bug 1229362 for CVE-2024-42306",
"url": "https://bugzilla.suse.com/1229362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-42306"
},
{
"cve": "CVE-2024-43828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix infinite loop when replaying fast_commit\n\nWhen doing fast_commit replay an infinite loop may occur due to an\nuninitialized extent_status struct. ext4_ext_determine_insert_hole() does\nnot detect the replay and calls ext4_es_find_extent_range(), which will\nreturn immediately without initializing the \u0027es\u0027 variable.\n\nBecause \u0027es\u0027 contains garbage, an integer overflow may happen causing an\ninfinite loop in this function, easily reproducible using fstest generic/039.\n\nThis commit fixes this issue by unconditionally initializing the structure\nin function ext4_es_find_extent_range().\n\nThanks to Zhang Yi, for figuring out the real problem!",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43828",
"url": "https://www.suse.com/security/cve/CVE-2024-43828"
},
{
"category": "external",
"summary": "SUSE Bug 1229394 for CVE-2024-43828",
"url": "https://bugzilla.suse.com/1229394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43828"
},
{
"cve": "CVE-2024-43832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43832"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/uv: Don\u0027t call folio_wait_writeback() without a folio reference\n\nfolio_wait_writeback() requires that no spinlocks are held and that\na folio reference is held, as documented. After we dropped the PTL, the\nfolio could get freed concurrently. So grab a temporary reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43832",
"url": "https://www.suse.com/security/cve/CVE-2024-43832"
},
{
"category": "external",
"summary": "SUSE Bug 1229380 for CVE-2024-43832",
"url": "https://bugzilla.suse.com/1229380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43832"
},
{
"cve": "CVE-2024-43835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43835"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix napi_skb_cache_put warning\n\nAfter the commit bdacf3e34945 (\"net: Use nested-BH locking for\nnapi_alloc_cache.\") was merged, the following warning began to appear:\n\n\t WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0\n\n\t __warn+0x12f/0x340\n\t napi_skb_cache_put+0x82/0x4b0\n\t napi_skb_cache_put+0x82/0x4b0\n\t report_bug+0x165/0x370\n\t handle_bug+0x3d/0x80\n\t exc_invalid_op+0x1a/0x50\n\t asm_exc_invalid_op+0x1a/0x20\n\t __free_old_xmit+0x1c8/0x510\n\t napi_skb_cache_put+0x82/0x4b0\n\t __free_old_xmit+0x1c8/0x510\n\t __free_old_xmit+0x1c8/0x510\n\t __pfx___free_old_xmit+0x10/0x10\n\nThe issue arises because virtio is assuming it\u0027s running in NAPI context\neven when it\u0027s not, such as in the netpoll case.\n\nTo resolve this, modify virtnet_poll_tx() to only set NAPI when budget\nis available. Same for virtnet_poll_cleantx(), which always assumed that\nit was in a NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43835",
"url": "https://www.suse.com/security/cve/CVE-2024-43835"
},
{
"category": "external",
"summary": "SUSE Bug 1229289 for CVE-2024-43835",
"url": "https://bugzilla.suse.com/1229289"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43835"
},
{
"cve": "CVE-2024-43845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix bogus checksum computation in udf_rename()\n\nSyzbot reports uninitialized memory access in udf_rename() when updating\nchecksum of \u0027..\u0027 directory entry of a moved directory. This is indeed\ntrue as we pass on-stack diriter.fi to the udf_update_tag() and because\nthat has only struct fileIdentDesc included in it and not the impUse or\nname fields, the checksumming function is going to checksum random stack\ncontents beyond the end of the structure. This is actually harmless\nbecause the following udf_fiiter_write_fi() will recompute the checksum\nfrom on-disk buffers where everything is properly included. So all that\nis needed is just removing the bogus calculation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43845",
"url": "https://www.suse.com/security/cve/CVE-2024-43845"
},
{
"category": "external",
"summary": "SUSE Bug 1229389 for CVE-2024-43845",
"url": "https://bugzilla.suse.com/1229389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43845"
},
{
"cve": "CVE-2024-43870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43870"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: Fix event leak upon exit\n\nWhen a task is scheduled out, pending sigtrap deliveries are deferred\nto the target task upon resume to userspace via task_work.\n\nHowever failures while adding an event\u0027s callback to the task_work\nengine are ignored. And since the last call for events exit happen\nafter task work is eventually closed, there is a small window during\nwhich pending sigtrap can be queued though ignored, leaking the event\nrefcount addition such as in the following scenario:\n\n TASK A\n -----\n\n do_exit()\n exit_task_work(tsk);\n\n \u003cIRQ\u003e\n perf_event_overflow()\n event-\u003epending_sigtrap = pending_id;\n irq_work_queue(\u0026event-\u003epending_irq);\n \u003c/IRQ\u003e\n =========\u003e PREEMPTION: TASK A -\u003e TASK B\n event_sched_out()\n event-\u003epending_sigtrap = 0;\n atomic_long_inc_not_zero(\u0026event-\u003erefcount)\n // FAILS: task work has exited\n task_work_add(\u0026event-\u003epending_task)\n [...]\n \u003cIRQ WORK\u003e\n perf_pending_irq()\n // early return: event-\u003eoncpu = -1\n \u003c/IRQ WORK\u003e\n [...]\n =========\u003e TASK B -\u003e TASK A\n perf_event_exit_task(tsk)\n perf_event_exit_event()\n free_event()\n WARN(atomic_long_cmpxchg(\u0026event-\u003erefcount, 1, 0) != 1)\n // leak event due to unexpected refcount == 2\n\nAs a result the event is never released while the task exits.\n\nFix this with appropriate task_work_add()\u0027s error handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43870",
"url": "https://www.suse.com/security/cve/CVE-2024-43870"
},
{
"category": "external",
"summary": "SUSE Bug 1229494 for CVE-2024-43870",
"url": "https://bugzilla.suse.com/1229494"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43870"
},
{
"cve": "CVE-2024-43890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix overflow in get_free_elt()\n\n\"tracing_map-\u003enext_elt\" in get_free_elt() is at risk of overflowing.\n\nOnce it overflows, new elements can still be inserted into the tracing_map\neven though the maximum number of elements (`max_elts`) has been reached.\nContinuing to insert elements after the overflow could result in the\ntracing_map containing \"tracing_map-\u003emax_size\" elements, leaving no empty\nentries.\nIf any attempt is made to insert an element into a full tracing_map using\n`__tracing_map_insert()`, it will cause an infinite loop with preemption\ndisabled, leading to a CPU hang problem.\n\nFix this by preventing any further increments to \"tracing_map-\u003enext_elt\"\nonce it reaches \"tracing_map-\u003emax_elt\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43890",
"url": "https://www.suse.com/security/cve/CVE-2024-43890"
},
{
"category": "external",
"summary": "SUSE Bug 1229764 for CVE-2024-43890",
"url": "https://bugzilla.suse.com/1229764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43890"
},
{
"cve": "CVE-2024-43898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43898"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43898",
"url": "https://www.suse.com/security/cve/CVE-2024-43898"
},
{
"category": "external",
"summary": "SUSE Bug 1229753 for CVE-2024-43898",
"url": "https://bugzilla.suse.com/1229753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43898"
},
{
"cve": "CVE-2024-43904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null checks for \u0027stream\u0027 and \u0027plane\u0027 before dereferencing\n\nThis commit adds null checks for the \u0027stream\u0027 and \u0027plane\u0027 variables in\nthe dcn30_apply_idle_power_optimizations function. These variables were\npreviously assumed to be null at line 922, but they were used later in\nthe code without checking if they were null. This could potentially lead\nto a null pointer dereference, which would cause a crash.\n\nThe null checks ensure that \u0027stream\u0027 and \u0027plane\u0027 are not null before\nthey are used, preventing potential crashes.\n\nFixes the below static smatch checker:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027stream\u0027 could be null (see line 922)\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed \u0027plane\u0027 could be null (see line 922)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43904",
"url": "https://www.suse.com/security/cve/CVE-2024-43904"
},
{
"category": "external",
"summary": "SUSE Bug 1229768 for CVE-2024-43904",
"url": "https://bugzilla.suse.com/1229768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43904"
},
{
"cve": "CVE-2024-43914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-43914"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: avoid BUG_ON() while continue reshape after reassembling\n\nCurrently, mdadm support --revert-reshape to abort the reshape while\nreassembling, as the test 07revert-grow. However, following BUG_ON()\ncan be triggerred by the test:\n\nkernel BUG at drivers/md/raid5.c:6278!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nirq event stamp: 158985\nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94\nRIP: 0010:reshape_request+0x3f1/0xe60\nCall Trace:\n \u003cTASK\u003e\n raid5_sync_request+0x43d/0x550\n md_do_sync+0xb7a/0x2110\n md_thread+0x294/0x2b0\n kthread+0x147/0x1c0\n ret_from_fork+0x59/0x70\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nRoot cause is that --revert-reshape update the raid_disks from 5 to 4,\nwhile reshape position is still set, and after reassembling the array,\nreshape position will be read from super block, then during reshape the\nchecking of \u0027writepos\u0027 that is caculated by old reshape position will\nfail.\n\nFix this panic the easy way first, by converting the BUG_ON() to\nWARN_ON(), and stop the reshape if checkings fail.\n\nNoted that mdadm must fix --revert-shape as well, and probably md/raid\nshould enhance metadata validation as well, however this means\nreassemble will fail and there must be user tools to fix the wrong\nmetadata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-43914",
"url": "https://www.suse.com/security/cve/CVE-2024-43914"
},
{
"category": "external",
"summary": "SUSE Bug 1229790 for CVE-2024-43914",
"url": "https://bugzilla.suse.com/1229790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-43914"
},
{
"cve": "CVE-2024-44935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44935"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Fix null-ptr-deref in reuseport_add_sock().\n\nsyzbot reported a null-ptr-deref while accessing sk2-\u003esk_reuseport_cb in\nreuseport_add_sock(). [0]\n\nThe repro first creates a listener with SO_REUSEPORT. Then, it creates\nanother listener on the same port and concurrently closes the first\nlistener.\n\nThe second listen() calls reuseport_add_sock() with the first listener as\nsk2, where sk2-\u003esk_reuseport_cb is not expected to be cleared concurrently,\nbut the close() does clear it by reuseport_detach_sock().\n\nThe problem is SCTP does not properly synchronise reuseport_alloc(),\nreuseport_add_sock(), and reuseport_detach_sock().\n\nThe caller of reuseport_alloc() and reuseport_{add,detach}_sock() must\nprovide synchronisation for sockets that are classified into the same\nreuseport group.\n\nOtherwise, such sockets form multiple identical reuseport groups, and\nall groups except one would be silently dead.\n\n 1. Two sockets call listen() concurrently\n 2. No socket in the same group found in sctp_ep_hashtable[]\n 3. Two sockets call reuseport_alloc() and form two reuseport groups\n 4. Only one group hit first in __sctp_rcv_lookup_endpoint() receives\n incoming packets\n\nAlso, the reported null-ptr-deref could occur.\n\nTCP/UDP guarantees that would not happen by holding the hash bucket lock.\n\nLet\u0027s apply the locking strategy to __sctp_hash_endpoint() and\n__sctp_unhash_endpoint().\n\n[0]:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\nCPU: 1 UID: 0 PID: 10230 Comm: syz-executor119 Not tainted 6.10.0-syzkaller-12585-g301927d2d2eb #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024\nRIP: 0010:reuseport_add_sock+0x27e/0x5e0 net/core/sock_reuseport.c:350\nCode: 00 0f b7 5d 00 bf 01 00 00 00 89 de e8 1b a4 ff f7 83 fb 01 0f 85 a3 01 00 00 e8 6d a0 ff f7 49 8d 7e 12 48 89 f8 48 c1 e8 03 \u003c42\u003e 0f b6 04 28 84 c0 0f 85 4b 02 00 00 41 0f b7 5e 12 49 8d 7e 14\nRSP: 0018:ffffc9000b947c98 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff8880252ddf98 RCX: ffff888079478000\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000012\nRBP: 0000000000000001 R08: ffffffff8993e18d R09: 1ffffffff1fef385\nR10: dffffc0000000000 R11: fffffbfff1fef386 R12: ffff8880252ddac0\nR13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000\nFS: 00007f24e45b96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffcced5f7b8 CR3: 00000000241be000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __sctp_hash_endpoint net/sctp/input.c:762 [inline]\n sctp_hash_endpoint+0x52a/0x600 net/sctp/input.c:790\n sctp_listen_start net/sctp/socket.c:8570 [inline]\n sctp_inet_listen+0x767/0xa20 net/sctp/socket.c:8625\n __sys_listen_socket net/socket.c:1883 [inline]\n __sys_listen+0x1b7/0x230 net/socket.c:1894\n __do_sys_listen net/socket.c:1902 [inline]\n __se_sys_listen net/socket.c:1900 [inline]\n __x64_sys_listen+0x5a/0x70 net/socket.c:1900\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f24e46039b9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 91 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f24e45b9228 EFLAGS: 00000246 ORIG_RAX: 0000000000000032\nRAX: ffffffffffffffda RBX: 00007f24e468e428 RCX: 00007f24e46039b9\nRDX: 00007f24e46039b9 RSI: 0000000000000003 RDI: 0000000000000004\nRBP: 00007f24e468e420 R08: 00007f24e45b96c0 R09: 00007f24e45b96c0\nR10: 00007f24e45b96c0 R11: 0000000000000246 R12: 00007f24e468e42c\nR13:\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44935",
"url": "https://www.suse.com/security/cve/CVE-2024-44935"
},
{
"category": "external",
"summary": "SUSE Bug 1229810 for CVE-2024-44935",
"url": "https://bugzilla.suse.com/1229810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44935"
},
{
"cve": "CVE-2024-44944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use helper function to calculate expect ID\n\nDelete expectation path is missing a call to the nf_expect_get_id()\nhelper function to calculate the expectation ID, otherwise LSB of the\nexpectation object address is leaked to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44944",
"url": "https://www.suse.com/security/cve/CVE-2024-44944"
},
{
"category": "external",
"summary": "SUSE Bug 1229899 for CVE-2024-44944",
"url": "https://bugzilla.suse.com/1229899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44944"
},
{
"cve": "CVE-2024-44946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44946"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Serialise kcm_sendmsg() for the same socket.\n\nsyzkaller reported UAF in kcm_release(). [0]\n\nThe scenario is\n\n 1. Thread A builds a skb with MSG_MORE and sets kcm-\u003eseq_skb.\n\n 2. Thread A resumes building skb from kcm-\u003eseq_skb but is blocked\n by sk_stream_wait_memory()\n\n 3. Thread B calls sendmsg() concurrently, finishes building kcm-\u003eseq_skb\n and puts the skb to the write queue\n\n 4. Thread A faces an error and finally frees skb that is already in the\n write queue\n\n 5. kcm_release() does double-free the skb in the write queue\n\nWhen a thread is building a MSG_MORE skb, another thread must not touch it.\n\nLet\u0027s add a per-sk mutex and serialise kcm_sendmsg().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __skb_unlink include/linux/skbuff.h:2366 [inline]\nBUG: KASAN: slab-use-after-free in __skb_dequeue include/linux/skbuff.h:2385 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\nBUG: KASAN: slab-use-after-free in __skb_queue_purge include/linux/skbuff.h:3181 [inline]\nBUG: KASAN: slab-use-after-free in kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\nRead of size 8 at addr ffff0000ced0fc80 by task syz-executor329/6167\n\nCPU: 1 PID: 6167 Comm: syz-executor329 Tainted: G B 6.8.0-rc5-syzkaller-g9abbc24128bc #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall trace:\n dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:291\n show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:298\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd0/0x124 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x178/0x518 mm/kasan/report.c:488\n kasan_report+0xd8/0x138 mm/kasan/report.c:601\n __asan_report_load8_noabort+0x20/0x2c mm/kasan/report_generic.c:381\n __skb_unlink include/linux/skbuff.h:2366 [inline]\n __skb_dequeue include/linux/skbuff.h:2385 [inline]\n __skb_queue_purge_reason include/linux/skbuff.h:3175 [inline]\n __skb_queue_purge include/linux/skbuff.h:3181 [inline]\n kcm_release+0x170/0x4c8 net/kcm/kcmsock.c:1691\n __sock_release net/socket.c:659 [inline]\n sock_close+0xa4/0x1e8 net/socket.c:1421\n __fput+0x30c/0x738 fs/file_table.c:376\n ____fput+0x20/0x30 fs/file_table.c:404\n task_work_run+0x230/0x2e0 kernel/task_work.c:180\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0x618/0x1f64 kernel/exit.c:871\n do_group_exit+0x194/0x22c kernel/exit.c:1020\n get_signal+0x1500/0x15ec kernel/signal.c:2893\n do_signal+0x23c/0x3b44 arch/arm64/kernel/signal.c:1249\n do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148\n exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]\n exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]\n el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713\n el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\n\nAllocated by task 6166:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x40/0x78 mm/kasan/common.c:68\n kasan_save_alloc_info+0x70/0x84 mm/kasan/generic.c:626\n unpoison_slab_object mm/kasan/common.c:314 [inline]\n __kasan_slab_alloc+0x74/0x8c mm/kasan/common.c:340\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3813 [inline]\n slab_alloc_node mm/slub.c:3860 [inline]\n kmem_cache_alloc_node+0x204/0x4c0 mm/slub.c:3903\n __alloc_skb+0x19c/0x3d8 net/core/skbuff.c:641\n alloc_skb include/linux/skbuff.h:1296 [inline]\n kcm_sendmsg+0x1d3c/0x2124 net/kcm/kcmsock.c:783\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg net/socket.c:745 [inline]\n sock_sendmsg+0x220/0x2c0 net/socket.c:768\n splice_to_socket+0x7cc/0xd58 fs/splice.c:889\n do_splice_from fs/splice.c:941 [inline]\n direct_splice_actor+0xec/0x1d8 fs/splice.c:1164\n splice_direct_to_actor+0x438/0xa0c fs/splice.c:1108\n do_splice_direct_actor \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44946",
"url": "https://www.suse.com/security/cve/CVE-2024-44946"
},
{
"category": "external",
"summary": "SUSE Bug 1230015 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230015"
},
{
"category": "external",
"summary": "SUSE Bug 1230016 for CVE-2024-44946",
"url": "https://bugzilla.suse.com/1230016"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "important"
}
],
"title": "CVE-2024-44946"
},
{
"cve": "CVE-2024-44947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44947"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44947",
"url": "https://www.suse.com/security/cve/CVE-2024-44947"
},
{
"category": "external",
"summary": "SUSE Bug 1229456 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1229456"
},
{
"category": "external",
"summary": "SUSE Bug 1230098 for CVE-2024-44947",
"url": "https://bugzilla.suse.com/1230098"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44947"
},
{
"cve": "CVE-2024-44948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44948"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mtrr: Check if fixed MTRRs exist before saving them\n\nMTRRs have an obsolete fixed variant for fine grained caching control\nof the 640K-1MB region that uses separate MSRs. This fixed variant has\na separate capability bit in the MTRR capability MSR.\n\nSo far all x86 CPUs which support MTRR have this separate bit set, so it\nwent unnoticed that mtrr_save_state() does not check the capability bit\nbefore accessing the fixed MTRR MSRs.\n\nThough on a CPU that does not support the fixed MTRR capability this\nresults in a #GP. The #GP itself is harmless because the RDMSR fault is\nhandled gracefully, but results in a WARN_ON().\n\nAdd the missing capability check to prevent this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44948",
"url": "https://www.suse.com/security/cve/CVE-2024-44948"
},
{
"category": "external",
"summary": "SUSE Bug 1230174 for CVE-2024-44948",
"url": "https://bugzilla.suse.com/1230174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44948"
},
{
"cve": "CVE-2024-44950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44950"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix invalid FIFO access with special register set\n\nWhen enabling access to the special register set, Receiver time-out and\nRHR interrupts can happen. In this case, the IRQ handler will try to read\nfrom the FIFO thru the RHR register at address 0x00, but address 0x00 is\nmapped to DLL register, resulting in erroneous FIFO reading.\n\nCall graph example:\n sc16is7xx_startup(): entry\n sc16is7xx_ms_proc(): entry\n sc16is7xx_set_termios(): entry\n sc16is7xx_set_baud(): DLH/DLL = $009C --\u003e access special register set\n sc16is7xx_port_irq() entry --\u003e IIR is 0x0C\n sc16is7xx_handle_rx() entry\n sc16is7xx_fifo_read(): --\u003e unable to access FIFO (RHR) because it is\n mapped to DLL (LCR=LCR_CONF_MODE_A)\n sc16is7xx_set_baud(): exit --\u003e Restore access to general register set\n\nFix the problem by claiming the efr_lock mutex when accessing the Special\nregister set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44950",
"url": "https://www.suse.com/security/cve/CVE-2024-44950"
},
{
"category": "external",
"summary": "SUSE Bug 1230180 for CVE-2024-44950",
"url": "https://bugzilla.suse.com/1230180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44950"
},
{
"cve": "CVE-2024-44951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44951"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sc16is7xx: fix TX fifo corruption\n\nSometimes, when a packet is received on channel A at almost the same time\nas a packet is about to be transmitted on channel B, we observe with a\nlogic analyzer that the received packet on channel A is transmitted on\nchannel B. In other words, the Tx buffer data on channel B is corrupted\nwith data from channel A.\n\nThe problem appeared since commit 4409df5866b7 (\"serial: sc16is7xx: change\nEFR lock to operate on each channels\"), which changed the EFR locking to\noperate on each channel instead of chip-wise.\n\nThis commit has introduced a regression, because the EFR lock is used not\nonly to protect the EFR registers access, but also, in a very obscure and\nundocumented way, to protect access to the data buffer, which is shared by\nthe Tx and Rx handlers, but also by each channel of the IC.\n\nFix this regression first by switching to kfifo_out_linear_ptr() in\nsc16is7xx_handle_tx() to eliminate the need for a shared Rx/Tx buffer.\n\nSecondly, replace the chip-wise Rx buffer with a separate Rx buffer for\neach channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44951",
"url": "https://www.suse.com/security/cve/CVE-2024-44951"
},
{
"category": "external",
"summary": "SUSE Bug 1230181 for CVE-2024-44951",
"url": "https://bugzilla.suse.com/1230181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44951"
},
{
"cve": "CVE-2024-44952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44952"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44952",
"url": "https://www.suse.com/security/cve/CVE-2024-44952"
},
{
"category": "external",
"summary": "SUSE Bug 1230178 for CVE-2024-44952",
"url": "https://bugzilla.suse.com/1230178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44952"
},
{
"cve": "CVE-2024-44954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44954"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: line6: Fix racy access to midibuf\n\nThere can be concurrent accesses to line6 midibuf from both the URB\ncompletion callback and the rawmidi API access. This could be a cause\nof KMSAN warning triggered by syzkaller below (so put as reported-by\nhere).\n\nThis patch protects the midibuf call of the former code path with a\nspinlock for avoiding the possible races.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44954",
"url": "https://www.suse.com/security/cve/CVE-2024-44954"
},
{
"category": "external",
"summary": "SUSE Bug 1230176 for CVE-2024-44954",
"url": "https://bugzilla.suse.com/1230176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44954"
},
{
"cve": "CVE-2024-44960",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44960"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: core: Check for unset descriptor\n\nMake sure the descriptor has been set before looking at maxpacket.\nThis fixes a null pointer panic in this case.\n\nThis may happen if the gadget doesn\u0027t properly set up the endpoint\nfor the current speed, or the gadget descriptors are malformed and\nthe descriptor for the speed/endpoint are not found.\n\nNo current gadget driver is known to have this problem, but this\nmay cause a hard-to-find bug during development of new gadgets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44960",
"url": "https://www.suse.com/security/cve/CVE-2024-44960"
},
{
"category": "external",
"summary": "SUSE Bug 1230191 for CVE-2024-44960",
"url": "https://bugzilla.suse.com/1230191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44960"
},
{
"cve": "CVE-2024-44961",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44961"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Forward soft recovery errors to userspace\n\nAs we discussed before[1], soft recovery should be\nforwarded to userspace, or we can get into a really\nbad state where apps will keep submitting hanging\ncommand buffers cascading us to a hard reset.\n\n1: https://lore.kernel.org/all/bf23d5ed-9a6b-43e7-84ee-8cbfd0d60f18@froggi.es/\n(cherry picked from commit 434967aadbbbe3ad9103cc29e9a327de20fdba01)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44961",
"url": "https://www.suse.com/security/cve/CVE-2024-44961"
},
{
"category": "external",
"summary": "SUSE Bug 1230207 for CVE-2024-44961",
"url": "https://bugzilla.suse.com/1230207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44961"
},
{
"cve": "CVE-2024-44962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44962"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Shutdown timer and prevent rearming when driver unloading\n\nWhen unload the btnxpuart driver, its associated timer will be deleted.\nIf the timer happens to be modified at this moment, it leads to the\nkernel call this timer even after the driver unloaded, resulting in\nkernel panic.\nUse timer_shutdown_sync() instead of del_timer_sync() to prevent rearming.\n\npanic log:\n Internal error: Oops: 0000000086000007 [#1] PREEMPT SMP\n Modules linked in: algif_hash algif_skcipher af_alg moal(O) mlan(O) crct10dif_ce polyval_ce polyval_generic snd_soc_imx_card snd_soc_fsl_asoc_card snd_soc_imx_audmux mxc_jpeg_encdec v4l2_jpeg snd_soc_wm8962 snd_soc_fsl_micfil snd_soc_fsl_sai flexcan snd_soc_fsl_utils ap130x rpmsg_ctrl imx_pcm_dma can_dev rpmsg_char pwm_fan fuse [last unloaded: btnxpuart]\n CPU: 5 PID: 723 Comm: memtester Tainted: G O 6.6.23-lts-next-06207-g4aef2658ac28 #1\n Hardware name: NXP i.MX95 19X19 board (DT)\n pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : 0xffff80007a2cf464\n lr : call_timer_fn.isra.0+0x24/0x80\n...\n Call trace:\n 0xffff80007a2cf464\n __run_timers+0x234/0x280\n run_timer_softirq+0x20/0x40\n __do_softirq+0x100/0x26c\n ____do_softirq+0x10/0x1c\n call_on_irq_stack+0x24/0x4c\n do_softirq_own_stack+0x1c/0x2c\n irq_exit_rcu+0xc0/0xdc\n el0_interrupt+0x54/0xd8\n __el0_irq_handler_common+0x18/0x24\n el0t_64_irq_handler+0x10/0x1c\n el0t_64_irq+0x190/0x194\n Code: ???????? ???????? ???????? ???????? (????????)\n ---[ end trace 0000000000000000 ]---\n Kernel panic - not syncing: Oops: Fatal exception in interrupt\n SMP: stopping secondary CPUs\n Kernel Offset: disabled\n CPU features: 0x0,c0000000,40028143,1000721b\n Memory Limit: none\n ---[ end Kernel panic - not syncing: Oops: Fatal exception in interrupt ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44962",
"url": "https://www.suse.com/security/cve/CVE-2024-44962"
},
{
"category": "external",
"summary": "SUSE Bug 1230213 for CVE-2024-44962",
"url": "https://bugzilla.suse.com/1230213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44962"
},
{
"cve": "CVE-2024-44965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44965"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/mm: Fix pti_clone_pgtable() alignment assumption\n\nGuenter reported dodgy crashes on an i386-nosmp build using GCC-11\nthat had the form of endless traps until entry stack exhaust and then\n#DF from the stack guard.\n\nIt turned out that pti_clone_pgtable() had alignment assumptions on\nthe start address, notably it hard assumes start is PMD aligned. This\nis true on x86_64, but very much not true on i386.\n\nThese assumptions can cause the end condition to malfunction, leading\nto a \u0027short\u0027 clone. Guess what happens when the user mapping has a\nshort copy of the entry text?\n\nUse the correct increment form for addr to avoid alignment\nassumptions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44965",
"url": "https://www.suse.com/security/cve/CVE-2024-44965"
},
{
"category": "external",
"summary": "SUSE Bug 1230221 for CVE-2024-44965",
"url": "https://bugzilla.suse.com/1230221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44965"
},
{
"cve": "CVE-2024-44967",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44967"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mgag200: Bind I2C lifetime to DRM device\n\nManaged cleanup with devm_add_action_or_reset() will release the I2C\nadapter when the underlying Linux device goes away. But the connector\nstill refers to it, so this cleanup leaves behind a stale pointer\nin struct drm_connector.ddc.\n\nBind the lifetime of the I2C adapter to the connector\u0027s lifetime by\nusing DRM\u0027s managed release. When the DRM device goes away (after\nthe Linux device) DRM will first clean up the connector and then\nclean up the I2C adapter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44967",
"url": "https://www.suse.com/security/cve/CVE-2024-44967"
},
{
"category": "external",
"summary": "SUSE Bug 1230224 for CVE-2024-44967",
"url": "https://bugzilla.suse.com/1230224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44967"
},
{
"cve": "CVE-2024-44969",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44969"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/sclp: Prevent release of buffer in I/O\n\nWhen a task waiting for completion of a Store Data operation is\ninterrupted, an attempt is made to halt this operation. If this attempt\nfails due to a hardware or firmware problem, there is a chance that the\nSCLP facility might store data into buffers referenced by the original\noperation at a later time.\n\nHandle this situation by not releasing the referenced data buffers if\nthe halt attempt fails. For current use cases, this might result in a\nleak of few pages of memory in case of a rare hardware/firmware\nmalfunction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44969",
"url": "https://www.suse.com/security/cve/CVE-2024-44969"
},
{
"category": "external",
"summary": "SUSE Bug 1230200 for CVE-2024-44969",
"url": "https://bugzilla.suse.com/1230200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44969"
},
{
"cve": "CVE-2024-44970",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44970"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix invalid WQ linked list unlink\n\nWhen all the strides in a WQE have been consumed, the WQE is unlinked\nfrom the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible\nto receive CQEs with 0 consumed strides for the same WQE even after the\nWQE is fully consumed and unlinked. This triggers an additional unlink\nfor the same wqe which corrupts the linked list.\n\nFix this scenario by accepting 0 sized consumed strides without\nunlinking the WQE again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44970",
"url": "https://www.suse.com/security/cve/CVE-2024-44970"
},
{
"category": "external",
"summary": "SUSE Bug 1230209 for CVE-2024-44970",
"url": "https://bugzilla.suse.com/1230209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44970"
},
{
"cve": "CVE-2024-44971",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44971"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()\n\nbcm_sf2_mdio_register() calls of_phy_find_device() and then\nphy_device_remove() in a loop to remove existing PHY devices.\nof_phy_find_device() eventually calls bus_find_device(), which calls\nget_device() on the returned struct device * to increment the refcount.\nThe current implementation does not decrement the refcount, which causes\nmemory leak.\n\nThis commit adds the missing phy_device_free() call to decrement the\nrefcount via put_device() to balance the refcount.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44971",
"url": "https://www.suse.com/security/cve/CVE-2024-44971"
},
{
"category": "external",
"summary": "SUSE Bug 1230211 for CVE-2024-44971",
"url": "https://bugzilla.suse.com/1230211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44971"
},
{
"cve": "CVE-2024-44977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Validate TA binary size\n\nAdd TA binary size validation to avoid OOB write.\n\n(cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44977",
"url": "https://www.suse.com/security/cve/CVE-2024-44977"
},
{
"category": "external",
"summary": "SUSE Bug 1230217 for CVE-2024-44977",
"url": "https://bugzilla.suse.com/1230217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44977"
},
{
"cve": "CVE-2024-44982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: cleanup FB if dpu_format_populate_layout fails\n\nIf the dpu_format_populate_layout() fails, then FB is prepared, but not\ncleaned up. This ends up leaking the pin_count on the GEM object and\ncauses a splat during DRM file closure:\n\nmsm_obj-\u003epin_count\nWARNING: CPU: 2 PID: 569 at drivers/gpu/drm/msm/msm_gem.c:121 update_lru_locked+0xc4/0xcc\n[...]\nCall trace:\n update_lru_locked+0xc4/0xcc\n put_pages+0xac/0x100\n msm_gem_free_object+0x138/0x180\n drm_gem_object_free+0x1c/0x30\n drm_gem_object_handle_put_unlocked+0x108/0x10c\n drm_gem_object_release_handle+0x58/0x70\n idr_for_each+0x68/0xec\n drm_gem_release+0x28/0x40\n drm_file_free+0x174/0x234\n drm_release+0xb0/0x160\n __fput+0xc0/0x2c8\n __fput_sync+0x50/0x5c\n __arm64_sys_close+0x38/0x7c\n invoke_syscall+0x48/0x118\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x4c/0x120\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194\nirq event stamp: 129818\nhardirqs last enabled at (129817): [\u003cffffa5f6d953fcc0\u003e] console_unlock+0x118/0x124\nhardirqs last disabled at (129818): [\u003cffffa5f6da7dcf04\u003e] el1_dbg+0x24/0x8c\nsoftirqs last enabled at (129808): [\u003cffffa5f6d94afc18\u003e] handle_softirqs+0x4c8/0x4e8\nsoftirqs last disabled at (129785): [\u003cffffa5f6d94105e4\u003e] __do_softirq+0x14/0x20\n\nPatchwork: https://patchwork.freedesktop.org/patch/600714/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44982",
"url": "https://www.suse.com/security/cve/CVE-2024-44982"
},
{
"category": "external",
"summary": "SUSE Bug 1230204 for CVE-2024-44982",
"url": "https://bugzilla.suse.com/1230204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44982"
},
{
"cve": "CVE-2024-44984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix double DMA unmapping for XDP_REDIRECT\n\nRemove the dma_unmap_page_attrs() call in the driver\u0027s XDP_REDIRECT\ncode path. This should have been removed when we let the page pool\nhandle the DMA mapping. This bug causes the warning:\n\nWARNING: CPU: 7 PID: 59 at drivers/iommu/dma-iommu.c:1198 iommu_dma_unmap_page+0xd5/0x100\nCPU: 7 PID: 59 Comm: ksoftirqd/7 Tainted: G W 6.8.0-1010-gcp #11-Ubuntu\nHardware name: Dell Inc. PowerEdge R7525/0PYVT1, BIOS 2.15.2 04/02/2024\nRIP: 0010:iommu_dma_unmap_page+0xd5/0x100\nCode: 89 ee 48 89 df e8 cb f2 69 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 e9 ab 17 71 00 \u003c0f\u003e 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d 31 c0 31 d2 31 c9\nRSP: 0018:ffffab1fc0597a48 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff99ff838280c8 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\nRBP: ffffab1fc0597a78 R08: 0000000000000002 R09: ffffab1fc0597c1c\nR10: ffffab1fc0597cd3 R11: ffff99ffe375acd8 R12: 00000000e65b9000\nR13: 0000000000000050 R14: 0000000000001000 R15: 0000000000000002\nFS: 0000000000000000(0000) GS:ffff9a06efb80000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000565c34c37210 CR3: 00000005c7e3e000 CR4: 0000000000350ef0\n? show_regs+0x6d/0x80\n? __warn+0x89/0x150\n? iommu_dma_unmap_page+0xd5/0x100\n? report_bug+0x16a/0x190\n? handle_bug+0x51/0xa0\n? exc_invalid_op+0x18/0x80\n? iommu_dma_unmap_page+0xd5/0x100\n? iommu_dma_unmap_page+0x35/0x100\ndma_unmap_page_attrs+0x55/0x220\n? bpf_prog_4d7e87c0d30db711_xdp_dispatcher+0x64/0x9f\nbnxt_rx_xdp+0x237/0x520 [bnxt_en]\nbnxt_rx_pkt+0x640/0xdd0 [bnxt_en]\n__bnxt_poll_work+0x1a1/0x3d0 [bnxt_en]\nbnxt_poll+0xaa/0x1e0 [bnxt_en]\n__napi_poll+0x33/0x1e0\nnet_rx_action+0x18a/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44984",
"url": "https://www.suse.com/security/cve/CVE-2024-44984"
},
{
"category": "external",
"summary": "SUSE Bug 1230240 for CVE-2024-44984",
"url": "https://bugzilla.suse.com/1230240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44984"
},
{
"cve": "CVE-2024-44985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UAF in ip6_xmit()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand the associated dst/idev could also have been freed.\n\nWe must use rcu_read_lock() to prevent a possible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44985",
"url": "https://www.suse.com/security/cve/CVE-2024-44985"
},
{
"category": "external",
"summary": "SUSE Bug 1230206 for CVE-2024-44985",
"url": "https://bugzilla.suse.com/1230206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44985"
},
{
"cve": "CVE-2024-44986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix possible UAF in ip6_finish_output2()\n\nIf skb_expand_head() returns NULL, skb has been freed\nand associated dst/idev could also have been freed.\n\nWe need to hold rcu_read_lock() to make sure the dst and\nassociated idev are alive.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44986",
"url": "https://www.suse.com/security/cve/CVE-2024-44986"
},
{
"category": "external",
"summary": "SUSE Bug 1230230 for CVE-2024-44986",
"url": "https://bugzilla.suse.com/1230230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44986"
},
{
"cve": "CVE-2024-44987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44987"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent UAF in ip6_send_skb()\n\nsyzbot reported an UAF in ip6_send_skb() [1]\n\nAfter ip6_local_out() has returned, we no longer can safely\ndereference rt, unless we hold rcu_read_lock().\n\nA similar issue has been fixed in commit\na688caa34beb (\"ipv6: take rcu lock in rawv6_send_hdrinc()\")\n\nAnother potential issue in ip6_finish_output2() is handled in a\nseparate patch.\n\n[1]\n BUG: KASAN: slab-use-after-free in ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\nRead of size 8 at addr ffff88806dde4858 by task syz.1.380/6530\n\nCPU: 1 UID: 0 PID: 6530 Comm: syz.1.380 Not tainted 6.11.0-rc3-syzkaller-00306-gdf6cbc62cc9b #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:93 [inline]\n dump_stack_lvl+0x241/0x360 lib/dump_stack.c:119\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0x169/0x550 mm/kasan/report.c:488\n kasan_report+0x143/0x180 mm/kasan/report.c:601\n ip6_send_skb+0x18d/0x230 net/ipv6/ip6_output.c:1964\n rawv6_push_pending_frames+0x75c/0x9e0 net/ipv6/raw.c:588\n rawv6_sendmsg+0x19c7/0x23c0 net/ipv6/raw.c:926\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n sock_write_iter+0x2dd/0x400 net/socket.c:1160\n do_iter_readv_writev+0x60a/0x890\n vfs_writev+0x37c/0xbb0 fs/read_write.c:971\n do_writev+0x1b1/0x350 fs/read_write.c:1018\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f936bf79e79\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f936cd7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014\nRAX: ffffffffffffffda RBX: 00007f936c115f80 RCX: 00007f936bf79e79\nRDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000004\nRBP: 00007f936bfe7916 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 0000000000000000 R14: 00007f936c115f80 R15: 00007fff2860a7a8\n \u003c/TASK\u003e\n\nAllocated by task 6530:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n unpoison_slab_object mm/kasan/common.c:312 [inline]\n __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:338\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slub.c:3988 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_noprof+0x135/0x2a0 mm/slub.c:4044\n dst_alloc+0x12b/0x190 net/core/dst.c:89\n ip6_blackhole_route+0x59/0x340 net/ipv6/route.c:2670\n make_blackhole net/xfrm/xfrm_policy.c:3120 [inline]\n xfrm_lookup_route+0xd1/0x1c0 net/xfrm/xfrm_policy.c:3313\n ip6_dst_lookup_flow+0x13e/0x180 net/ipv6/ip6_output.c:1257\n rawv6_sendmsg+0x1283/0x23c0 net/ipv6/raw.c:898\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x1a6/0x270 net/socket.c:745\n ____sys_sendmsg+0x525/0x7d0 net/socket.c:2597\n ___sys_sendmsg net/socket.c:2651 [inline]\n __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2680\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 45:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n poison_slab_object+0xe0/0x150 mm/kasan/common.c:240\n __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256\n kasan_slab_free include/linux/kasan.h:184 [inline]\n slab_free_hook mm/slub.c:2252 [inline]\n slab_free mm/slub.c:4473 [inline]\n kmem_cache_free+0x145/0x350 mm/slub.c:4548\n dst_destroy+0x2ac/0x460 net/core/dst.c:124\n rcu_do_batch kernel/rcu/tree.c:2569 [inline]\n rcu_core+0xafd/0x1830 kernel/rcu/tree.\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44987",
"url": "https://www.suse.com/security/cve/CVE-2024-44987"
},
{
"category": "external",
"summary": "SUSE Bug 1230185 for CVE-2024-44987",
"url": "https://bugzilla.suse.com/1230185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44987"
},
{
"cve": "CVE-2024-44988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: mv88e6xxx: Fix out-of-bound access\n\nIf an ATU violation was caused by a CPU Load operation, the SPID could\nbe larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44988",
"url": "https://www.suse.com/security/cve/CVE-2024-44988"
},
{
"category": "external",
"summary": "SUSE Bug 1230192 for CVE-2024-44988",
"url": "https://bugzilla.suse.com/1230192"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44988"
},
{
"cve": "CVE-2024-44989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix xfrm real_dev null pointer dereference\n\nWe shouldn\u0027t set real_dev to NULL because packets can be in transit and\nxfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume\nreal_dev is set.\n\n Example trace:\n kernel: BUG: unable to handle page fault for address: 0000000000001030\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: #PF: supervisor write access in kernel mode\n kernel: #PF: error_code(0x0002) - not-present page\n kernel: PGD 0 P4D 0\n kernel: Oops: 0002 [#1] PREEMPT SMP\n kernel: CPU: 4 PID: 2237 Comm: ping Not tainted 6.7.7+ #12\n kernel: Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\n kernel: RIP: 0010:nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: Code: e0 0f 0b 48 83 7f 38 00 74 de 0f 0b 48 8b 47 08 48 8b 37 48 8b 78 40 e9 b2 e5 9a d7 66 90 0f 1f 44 00 00 48 8b 86 80 02 00 00 \u003c83\u003e 80 30 10 00 00 01 b8 01 00 00 00 c3 0f 1f 80 00 00 00 00 0f 1f\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: RSP: 0018:ffffabde81553b98 EFLAGS: 00010246\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel:\n kernel: RAX: 0000000000000000 RBX: ffff9eb404e74900 RCX: ffff9eb403d97c60\n kernel: RDX: ffffffffc090de10 RSI: ffff9eb404e74900 RDI: ffff9eb3c5de9e00\n kernel: RBP: ffff9eb3c0a42000 R08: 0000000000000010 R09: 0000000000000014\n kernel: R10: 7974203030303030 R11: 3030303030303030 R12: 0000000000000000\n kernel: R13: ffff9eb3c5de9e00 R14: ffffabde81553cc8 R15: ffff9eb404c53000\n kernel: FS: 00007f2a77a3ad00(0000) GS:ffff9eb43bd00000(0000) knlGS:0000000000000000\n kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000001030 CR3: 00000001122ab000 CR4: 0000000000350ef0\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: Call Trace:\n kernel: \u003cTASK\u003e\n kernel: ? __die+0x1f/0x60\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? page_fault_oops+0x142/0x4c0\n kernel: ? do_user_addr_fault+0x65/0x670\n kernel: ? kvm_read_and_reset_apf_flags+0x3b/0x50\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: ? exc_page_fault+0x7b/0x180\n kernel: ? asm_exc_page_fault+0x22/0x30\n kernel: ? nsim_bpf_uninit+0x50/0x50 [netdevsim]\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ? nsim_ipsec_offload_ok+0xc/0x20 [netdevsim]\n kernel: bond0: (slave eni0np1): making interface the new active one\n kernel: bond_ipsec_offload_ok+0x7b/0x90 [bonding]\n kernel: xfrm_output+0x61/0x3b0\n kernel: bond0: (slave eni0np1): bond_ipsec_add_sa_all: failed to add SA\n kernel: ip_push_pending_frames+0x56/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44989",
"url": "https://www.suse.com/security/cve/CVE-2024-44989"
},
{
"category": "external",
"summary": "SUSE Bug 1230193 for CVE-2024-44989",
"url": "https://bugzilla.suse.com/1230193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44989"
},
{
"cve": "CVE-2024-44990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix null pointer deref in bond_ipsec_offload_ok\n\nWe must check if there is an active slave before dereferencing the pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44990",
"url": "https://www.suse.com/security/cve/CVE-2024-44990"
},
{
"category": "external",
"summary": "SUSE Bug 1230194 for CVE-2024-44990",
"url": "https://bugzilla.suse.com/1230194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44990"
},
{
"cve": "CVE-2024-44991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: prevent concurrent execution of tcp_sk_exit_batch\n\nIts possible that two threads call tcp_sk_exit_batch() concurrently,\nonce from the cleanup_net workqueue, once from a task that failed to clone\na new netns. In the latter case, error unwinding calls the exit handlers\nin reverse order for the \u0027failed\u0027 netns.\n\ntcp_sk_exit_batch() calls tcp_twsk_purge().\nProblem is that since commit b099ce2602d8 (\"net: Batch inet_twsk_purge\"),\nthis function picks up twsk in any dying netns, not just the one passed\nin via exit_batch list.\n\nThis means that the error unwind of setup_net() can \"steal\" and destroy\ntimewait sockets belonging to the exiting netns.\n\nThis allows the netns exit worker to proceed to call\n\nWARN_ON_ONCE(!refcount_dec_and_test(\u0026net-\u003eipv4.tcp_death_row.tw_refcount));\n\nwithout the expected 1 -\u003e 0 transition, which then splats.\n\nAt same time, error unwind path that is also running inet_twsk_purge()\nwill splat as well:\n\nWARNING: .. at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210\n...\n refcount_dec include/linux/refcount.h:351 [inline]\n inet_twsk_kill+0x758/0x9c0 net/ipv4/inet_timewait_sock.c:70\n inet_twsk_deschedule_put net/ipv4/inet_timewait_sock.c:221\n inet_twsk_purge+0x725/0x890 net/ipv4/inet_timewait_sock.c:304\n tcp_sk_exit_batch+0x1c/0x170 net/ipv4/tcp_ipv4.c:3522\n ops_exit_list+0x128/0x180 net/core/net_namespace.c:178\n setup_net+0x714/0xb40 net/core/net_namespace.c:375\n copy_net_ns+0x2f0/0x670 net/core/net_namespace.c:508\n create_new_namespaces+0x3ea/0xb10 kernel/nsproxy.c:110\n\n... because refcount_dec() of tw_refcount unexpectedly dropped to 0.\n\nThis doesn\u0027t seem like an actual bug (no tw sockets got lost and I don\u0027t\nsee a use-after-free) but as erroneous trigger of debug check.\n\nAdd a mutex to force strict ordering: the task that calls tcp_twsk_purge()\nblocks other task from doing final _dec_and_test before mutex-owner has\nremoved all tw sockets of dying netns.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44991",
"url": "https://www.suse.com/security/cve/CVE-2024-44991"
},
{
"category": "external",
"summary": "SUSE Bug 1230195 for CVE-2024-44991",
"url": "https://bugzilla.suse.com/1230195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44991"
},
{
"cve": "CVE-2024-44997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()\n\nWhen there are multiple ap interfaces on one band and with WED on,\nturning the interface down will cause a kernel panic on MT798X.\n\nPreviously, cb_priv was freed in mtk_wed_setup_tc_block() without\nmarking NULL,and mtk_wed_setup_tc_block_cb() didn\u0027t check the value, too.\n\nAssign NULL after free cb_priv in mtk_wed_setup_tc_block() and check NULL\nin mtk_wed_setup_tc_block_cb().\n\n----------\nUnable to handle kernel paging request at virtual address 0072460bca32b4f5\nCall trace:\n mtk_wed_setup_tc_block_cb+0x4/0x38\n 0xffffffc0794084bc\n tcf_block_playback_offloads+0x70/0x1e8\n tcf_block_unbind+0x6c/0xc8\n...\n---------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44997",
"url": "https://www.suse.com/security/cve/CVE-2024-44997"
},
{
"category": "external",
"summary": "SUSE Bug 1230232 for CVE-2024-44997",
"url": "https://bugzilla.suse.com/1230232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44997"
},
{
"cve": "CVE-2024-44998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: idt77252: prevent use after free in dequeue_rx()\n\nWe can\u0027t dereference \"skb\" after calling vcc-\u003epush() because the skb\nis released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44998",
"url": "https://www.suse.com/security/cve/CVE-2024-44998"
},
{
"category": "external",
"summary": "SUSE Bug 1230171 for CVE-2024-44998",
"url": "https://bugzilla.suse.com/1230171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44998"
},
{
"cve": "CVE-2024-44999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-44999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: pull network headers in gtp_dev_xmit()\n\nsyzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1]\n\nWe must make sure the IPv4 or Ipv6 header is pulled in skb-\u003ehead\nbefore accessing fields in them.\n\nUse pskb_inet_may_pull() to fix this issue.\n\n[1]\nBUG: KMSAN: uninit-value in ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n BUG: KMSAN: uninit-value in gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n BUG: KMSAN: uninit-value in gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n ipv6_pdp_find drivers/net/gtp.c:220 [inline]\n gtp_build_skb_ip6 drivers/net/gtp.c:1229 [inline]\n gtp_dev_xmit+0x1424/0x2540 drivers/net/gtp.c:1281\n __netdev_start_xmit include/linux/netdevice.h:4913 [inline]\n netdev_start_xmit include/linux/netdevice.h:4922 [inline]\n xmit_one net/core/dev.c:3580 [inline]\n dev_hard_start_xmit+0x247/0xa20 net/core/dev.c:3596\n __dev_queue_xmit+0x358c/0x5610 net/core/dev.c:4423\n dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n packet_xmit+0x9c/0x6c0 net/packet/af_packet.c:276\n packet_snd net/packet/af_packet.c:3145 [inline]\n packet_sendmsg+0x90e3/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:3994 [inline]\n slab_alloc_node mm/slub.c:4037 [inline]\n kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4080\n kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:583\n __alloc_skb+0x363/0x7b0 net/core/skbuff.c:674\n alloc_skb include/linux/skbuff.h:1320 [inline]\n alloc_skb_with_frags+0xc8/0xbf0 net/core/skbuff.c:6526\n sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2815\n packet_alloc_skb net/packet/af_packet.c:2994 [inline]\n packet_snd net/packet/af_packet.c:3088 [inline]\n packet_sendmsg+0x749c/0xa3a0 net/packet/af_packet.c:3177\n sock_sendmsg_nosec net/socket.c:730 [inline]\n __sock_sendmsg+0x30f/0x380 net/socket.c:745\n __sys_sendto+0x685/0x830 net/socket.c:2204\n __do_sys_sendto net/socket.c:2216 [inline]\n __se_sys_sendto net/socket.c:2212 [inline]\n __x64_sys_sendto+0x125/0x1d0 net/socket.c:2212\n x64_sys_call+0x3799/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:45\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 7115 Comm: syz.1.515 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-44999",
"url": "https://www.suse.com/security/cve/CVE-2024-44999"
},
{
"category": "external",
"summary": "SUSE Bug 1230233 for CVE-2024-44999",
"url": "https://bugzilla.suse.com/1230233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-44999"
},
{
"cve": "CVE-2024-45000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/netfs/fscache_cookie: add missing \"n_accesses\" check\n\nThis fixes a NULL pointer dereference bug due to a data race which\nlooks like this:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP PTI\n CPU: 33 PID: 16573 Comm: kworker/u97:799 Not tainted 6.8.7-cm4all1-hp+ #43\n Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 10/17/2018\n Workqueue: events_unbound netfs_rreq_write_to_cache_work\n RIP: 0010:cachefiles_prepare_write+0x30/0xa0\n Code: 57 41 56 45 89 ce 41 55 49 89 cd 41 54 49 89 d4 55 53 48 89 fb 48 83 ec 08 48 8b 47 08 48 83 7f 10 00 48 89 34 24 48 8b 68 20 \u003c48\u003e 8b 45 08 4c 8b 38 74 45 49 8b 7f 50 e8 4e a9 b0 ff 48 8b 73 10\n RSP: 0018:ffffb4e78113bde0 EFLAGS: 00010286\n RAX: ffff976126be6d10 RBX: ffff97615cdb8438 RCX: 0000000000020000\n RDX: ffff97605e6c4c68 RSI: ffff97605e6c4c60 RDI: ffff97615cdb8438\n RBP: 0000000000000000 R08: 0000000000278333 R09: 0000000000000001\n R10: ffff97605e6c4600 R11: 0000000000000001 R12: ffff97605e6c4c68\n R13: 0000000000020000 R14: 0000000000000001 R15: ffff976064fe2c00\n FS: 0000000000000000(0000) GS:ffff9776dfd40000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 000000005942c002 CR4: 00000000001706f0\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x1f/0x70\n ? page_fault_oops+0x15d/0x440\n ? search_module_extables+0xe/0x40\n ? fixup_exception+0x22/0x2f0\n ? exc_page_fault+0x5f/0x100\n ? asm_exc_page_fault+0x22/0x30\n ? cachefiles_prepare_write+0x30/0xa0\n netfs_rreq_write_to_cache_work+0x135/0x2e0\n process_one_work+0x137/0x2c0\n worker_thread+0x2e9/0x400\n ? __pfx_worker_thread+0x10/0x10\n kthread+0xcc/0x100\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n Modules linked in:\n CR2: 0000000000000008\n ---[ end trace 0000000000000000 ]---\n\nThis happened because fscache_cookie_state_machine() was slow and was\nstill running while another process invoked fscache_unuse_cookie();\nthis led to a fscache_cookie_lru_do_one() call, setting the\nFSCACHE_COOKIE_DO_LRU_DISCARD flag, which was picked up by\nfscache_cookie_state_machine(), withdrawing the cookie via\ncachefiles_withdraw_cookie(), clearing cookie-\u003ecache_priv.\n\nAt the same time, yet another process invoked\ncachefiles_prepare_write(), which found a NULL pointer in this code\nline:\n\n struct cachefiles_object *object = cachefiles_cres_object(cres);\n\nThe next line crashes, obviously:\n\n struct cachefiles_cache *cache = object-\u003evolume-\u003ecache;\n\nDuring cachefiles_prepare_write(), the \"n_accesses\" counter is\nnon-zero (via fscache_begin_operation()). The cookie must not be\nwithdrawn until it drops to zero.\n\nThe counter is checked by fscache_cookie_state_machine() before\nswitching to FSCACHE_COOKIE_STATE_RELINQUISHING and\nFSCACHE_COOKIE_STATE_WITHDRAWING (in \"case\nFSCACHE_COOKIE_STATE_FAILED\"), but not for\nFSCACHE_COOKIE_STATE_LRU_DISCARDING (\"case\nFSCACHE_COOKIE_STATE_ACTIVE\").\n\nThis patch adds the missing check. With a non-zero access counter,\nthe function returns and the next fscache_end_cookie_access() call\nwill queue another fscache_cookie_state_machine() call to handle the\nstill-pending FSCACHE_COOKIE_DO_LRU_DISCARD.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45000",
"url": "https://www.suse.com/security/cve/CVE-2024-45000"
},
{
"category": "external",
"summary": "SUSE Bug 1230170 for CVE-2024-45000",
"url": "https://bugzilla.suse.com/1230170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45000"
},
{
"cve": "CVE-2024-45001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix RX buf alloc_size alignment and atomic op panic\n\nThe MANA driver\u0027s RX buffer alloc_size is passed into napi_build_skb() to\ncreate SKB. skb_shinfo(skb) is located at the end of skb, and its alignment\nis affected by the alloc_size passed into napi_build_skb(). The size needs\nto be aligned properly for better performance and atomic operations.\nOtherwise, on ARM64 CPU, for certain MTU settings like 4000, atomic\noperations may panic on the skb_shinfo(skb)-\u003edataref due to alignment fault.\n\nTo fix this bug, add proper alignment to the alloc_size calculation.\n\nSample panic info:\n[ 253.298819] Unable to handle kernel paging request at virtual address ffff000129ba5cce\n[ 253.300900] Mem abort info:\n[ 253.301760] ESR = 0x0000000096000021\n[ 253.302825] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 253.304268] SET = 0, FnV = 0\n[ 253.305172] EA = 0, S1PTW = 0\n[ 253.306103] FSC = 0x21: alignment fault\nCall trace:\n __skb_clone+0xfc/0x198\n skb_clone+0x78/0xe0\n raw6_local_deliver+0xfc/0x228\n ip6_protocol_deliver_rcu+0x80/0x500\n ip6_input_finish+0x48/0x80\n ip6_input+0x48/0xc0\n ip6_sublist_rcv_finish+0x50/0x78\n ip6_sublist_rcv+0x1cc/0x2b8\n ipv6_list_rcv+0x100/0x150\n __netif_receive_skb_list_core+0x180/0x220\n netif_receive_skb_list_internal+0x198/0x2a8\n __napi_poll+0x138/0x250\n net_rx_action+0x148/0x330\n handle_softirqs+0x12c/0x3a0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45001",
"url": "https://www.suse.com/security/cve/CVE-2024-45001"
},
{
"category": "external",
"summary": "SUSE Bug 1230244 for CVE-2024-45001",
"url": "https://bugzilla.suse.com/1230244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45001"
},
{
"cve": "CVE-2024-45002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtla/osnoise: Prevent NULL dereference in error handling\n\nIf the \"tool-\u003edata\" allocation fails then there is no need to call\nosnoise_free_top() and, in fact, doing so will lead to a NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45002",
"url": "https://www.suse.com/security/cve/CVE-2024-45002"
},
{
"category": "external",
"summary": "SUSE Bug 1230169 for CVE-2024-45002",
"url": "https://bugzilla.suse.com/1230169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45002"
},
{
"cve": "CVE-2024-45003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfs: Don\u0027t evict inode under the inode lru traversing context\n\nThe inode reclaiming process(See function prune_icache_sb) collects all\nreclaimable inodes and mark them with I_FREEING flag at first, at that\ntime, other processes will be stuck if they try getting these inodes\n(See function find_inode_fast), then the reclaiming process destroy the\ninodes by function dispose_list(). Some filesystems(eg. ext4 with\nea_inode feature, ubifs with xattr) may do inode lookup in the inode\nevicting callback function, if the inode lookup is operated under the\ninode lru traversing context, deadlock problems may happen.\n\nCase 1: In function ext4_evict_inode(), the ea inode lookup could happen\n if ea_inode feature is enabled, the lookup process will be stuck\n\tunder the evicting context like this:\n\n 1. File A has inode i_reg and an ea inode i_ea\n 2. getfattr(A, xattr_buf) // i_ea is added into lru // lru-\u003ei_ea\n 3. Then, following three processes running like this:\n\n PA PB\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // i_reg is added into lru, lru-\u003ei_ea-\u003ei_reg\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n i_ea-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(i_reg)\n spin_unlock(\u0026i_reg-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file A\n i_reg-\u003enlink = 0\n iput(i_reg) // i_reg-\u003enlink is 0, do evict\n ext4_evict_inode\n ext4_xattr_delete_inode\n ext4_xattr_inode_dec_ref_all\n ext4_xattr_inode_iget\n ext4_iget(i_ea-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(i_ea) ----\u2192 AA deadlock\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026i_ea-\u003ei_state)\n\nCase 2: In deleted inode writing function ubifs_jnl_write_inode(), file\n deleting process holds BASEHD\u0027s wbuf-\u003eio_mutex while getting the\n\txattr inode, which could race with inode reclaiming process(The\n reclaiming process could try locking BASEHD\u0027s wbuf-\u003eio_mutex in\n\tinode evicting function), then an ABBA deadlock problem would\n\thappen as following:\n\n 1. File A has inode ia and a xattr(with inode ixa), regular file B has\n inode ib and a xattr.\n 2. getfattr(A, xattr_buf) // ixa is added into lru // lru-\u003eixa\n 3. Then, following three processes running like this:\n\n PA PB PC\n echo 2 \u003e /proc/sys/vm/drop_caches\n shrink_slab\n prune_dcache_sb\n // ib and ia are added into lru, lru-\u003eixa-\u003eib-\u003eia\n prune_icache_sb\n list_lru_walk_one\n inode_lru_isolate\n ixa-\u003ei_state |= I_FREEING // set inode state\n inode_lru_isolate\n __iget(ib)\n spin_unlock(\u0026ib-\u003ei_lock)\n spin_unlock(lru_lock)\n rm file B\n ib-\u003enlink = 0\n rm file A\n iput(ia)\n ubifs_evict_inode(ia)\n ubifs_jnl_delete_inode(ia)\n ubifs_jnl_write_inode(ia)\n make_reservation(BASEHD) // Lock wbuf-\u003eio_mutex\n ubifs_iget(ixa-\u003ei_ino)\n iget_locked\n find_inode_fast\n __wait_on_freeing_inode(ixa)\n | iput(ib) // ib-\u003enlink is 0, do evict\n | ubifs_evict_inode\n | ubifs_jnl_delete_inode(ib)\n \u2193 ubifs_jnl_write_inode\n ABBA deadlock \u2190-----make_reservation(BASEHD)\n dispose_list // cannot be executed by prune_icache_sb\n wake_up_bit(\u0026ixa-\u003ei_state)\n\nFix the possible deadlock by using new inode state flag I_LRU_ISOLATING\nto pin the inode in memory while inode_lru_isolate(\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45003",
"url": "https://www.suse.com/security/cve/CVE-2024-45003"
},
{
"category": "external",
"summary": "SUSE Bug 1230245 for CVE-2024-45003",
"url": "https://bugzilla.suse.com/1230245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45003"
},
{
"cve": "CVE-2024-45005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: fix validity interception issue when gisa is switched off\n\nWe might run into a SIE validity if gisa has been disabled either via using\nkernel parameter \"kvm.use_gisa=0\" or by setting the related sysfs\nattribute to N (echo N \u003e/sys/module/kvm/parameters/use_gisa).\n\nThe validity is caused by an invalid value in the SIE control block\u0027s\ngisa designation. That happens because we pass the uninitialized gisa\norigin to virt_to_phys() before writing it to the gisa designation.\n\nTo fix this we return 0 in kvm_s390_get_gisa_desc() if the origin is 0.\nkvm_s390_get_gisa_desc() is used to determine which gisa designation to\nset in the SIE control block. A value of 0 in the gisa designation disables\ngisa usage.\n\nThe issue surfaces in the host kernel with the following kernel message as\nsoon a new kvm guest start is attemted.\n\nkvm: unhandled validity intercept 0x1011\nWARNING: CPU: 0 PID: 781237 at arch/s390/kvm/intercept.c:101 kvm_handle_sie_intercept+0x42e/0x4d0 [kvm]\nModules linked in: vhost_net tap tun xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT xt_tcpudp nft_compat x_tables nf_nat_tftp nf_conntrack_tftp vfio_pci_core irqbypass vhost_vsock vmw_vsock_virtio_transport_common vsock vhost vhost_iotlb kvm nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables sunrpc mlx5_ib ib_uverbs ib_core mlx5_core uvdevice s390_trng eadm_sch vfio_ccw zcrypt_cex4 mdev vfio_iommu_type1 vfio sch_fq_codel drm i2c_core loop drm_panel_orientation_quirks configfs nfnetlink lcs ctcm fsm dm_service_time ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes sha3_512_s390 sha3_256_s390 sha512_s390 sha256_s390 sha1_s390 sha_common dm_mirror dm_region_hash dm_log zfcp scsi_transport_fc scsi_dh_rdac scsi_dh_emc scsi_dh_alua pkey zcrypt dm_multipath rng_core autofs4 [last unloaded: vfio_pci]\nCPU: 0 PID: 781237 Comm: CPU 0/KVM Not tainted 6.10.0-08682-gcad9f11498ea #6\nHardware name: IBM 3931 A01 701 (LPAR)\nKrnl PSW : 0704c00180000000 000003d93deb0122 (kvm_handle_sie_intercept+0x432/0x4d0 [kvm])\n R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:0 PM:0 RI:0 EA:3\nKrnl GPRS: 000003d900000027 000003d900000023 0000000000000028 000002cd00000000\n 000002d063a00900 00000359c6daf708 00000000000bebb5 0000000000001eff\n 000002cfd82e9000 000002cfd80bc000 0000000000001011 000003d93deda412\n 000003ff8962df98 000003d93de77ce0 000003d93deb011e 00000359c6daf960\nKrnl Code: 000003d93deb0112: c020fffe7259\tlarl\t%r2,000003d93de7e5c4\n 000003d93deb0118: c0e53fa8beac\tbrasl\t%r14,000003d9bd3c7e70\n #000003d93deb011e: af000000\t\tmc\t0,0\n \u003e000003d93deb0122: a728ffea\t\tlhi\t%r2,-22\n 000003d93deb0126: a7f4fe24\t\tbrc\t15,000003d93deafd6e\n 000003d93deb012a: 9101f0b0\t\ttm\t176(%r15),1\n 000003d93deb012e: a774fe48\t\tbrc\t7,000003d93deafdbe\n 000003d93deb0132: 40a0f0ae\t\tsth\t%r10,174(%r15)\nCall Trace:\n [\u003c000003d93deb0122\u003e] kvm_handle_sie_intercept+0x432/0x4d0 [kvm]\n([\u003c000003d93deb011e\u003e] kvm_handle_sie_intercept+0x42e/0x4d0 [kvm])\n [\u003c000003d93deacc10\u003e] vcpu_post_run+0x1d0/0x3b0 [kvm]\n [\u003c000003d93deaceda\u003e] __vcpu_run+0xea/0x2d0 [kvm]\n [\u003c000003d93dead9da\u003e] kvm_arch_vcpu_ioctl_run+0x16a/0x430 [kvm]\n [\u003c000003d93de93ee0\u003e] kvm_vcpu_ioctl+0x190/0x7c0 [kvm]\n [\u003c000003d9bd728b4e\u003e] vfs_ioctl+0x2e/0x70\n [\u003c000003d9bd72a092\u003e] __s390x_sys_ioctl+0xc2/0xd0\n [\u003c000003d9be0e9222\u003e] __do_syscall+0x1f2/0x2e0\n [\u003c000003d9be0f9a90\u003e] system_call+0x70/0x98\nLast Breaking-Event-Address:\n [\u003c000003d9bd3c7f58\u003e] __warn_printk+0xe8/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45005",
"url": "https://www.suse.com/security/cve/CVE-2024-45005"
},
{
"category": "external",
"summary": "SUSE Bug 1230173 for CVE-2024-45005",
"url": "https://bugzilla.suse.com/1230173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45005"
},
{
"cve": "CVE-2024-45006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix Panther point NULL pointer deref at full-speed re-enumeration\n\nre-enumerating full-speed devices after a failed address device command\ncan trigger a NULL pointer dereference.\n\nFull-speed devices may need to reconfigure the endpoint 0 Max Packet Size\nvalue during enumeration. Usb core calls usb_ep0_reinit() in this case,\nwhich ends up calling xhci_configure_endpoint().\n\nOn Panther point xHC the xhci_configure_endpoint() function will\nadditionally check and reserve bandwidth in software. Other hosts do\nthis in hardware\n\nIf xHC address device command fails then a new xhci_virt_device structure\nis allocated as part of re-enabling the slot, but the bandwidth table\npointers are not set up properly here.\nThis triggers the NULL pointer dereference the next time usb_ep0_reinit()\nis called and xhci_configure_endpoint() tries to check and reserve\nbandwidth\n\n[46710.713538] usb 3-1: new full-speed USB device number 5 using xhci_hcd\n[46710.713699] usb 3-1: Device not responding to setup address.\n[46710.917684] usb 3-1: Device not responding to setup address.\n[46711.125536] usb 3-1: device not accepting address 5, error -71\n[46711.125594] BUG: kernel NULL pointer dereference, address: 0000000000000008\n[46711.125600] #PF: supervisor read access in kernel mode\n[46711.125603] #PF: error_code(0x0000) - not-present page\n[46711.125606] PGD 0 P4D 0\n[46711.125610] Oops: Oops: 0000 [#1] PREEMPT SMP PTI\n[46711.125615] CPU: 1 PID: 25760 Comm: kworker/1:2 Not tainted 6.10.3_2 #1\n[46711.125620] Hardware name: Gigabyte Technology Co., Ltd.\n[46711.125623] Workqueue: usb_hub_wq hub_event [usbcore]\n[46711.125668] RIP: 0010:xhci_reserve_bandwidth (drivers/usb/host/xhci.c\n\nFix this by making sure bandwidth table pointers are set up correctly\nafter a failed address device command, and additionally by avoiding\nchecking for bandwidth in cases like this where no actual endpoints are\nadded or removed, i.e. only context for default control endpoint 0 is\nevaluated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45006",
"url": "https://www.suse.com/security/cve/CVE-2024-45006"
},
{
"category": "external",
"summary": "SUSE Bug 1230247 for CVE-2024-45006",
"url": "https://bugzilla.suse.com/1230247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45006"
},
{
"cve": "CVE-2024-45007",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45007"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Don\u0027t destroy workqueue from work item running on it\n\nTriggered by a kref decrement, destroy_workqueue() may be called from\nwithin a work item for destroying its own workqueue. This illegal\nsituation is averted by adding a module-global workqueue for exclusive\nuse of the offending work item. Other work items continue to be queued\non per-device workqueues to ensure performance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45007",
"url": "https://www.suse.com/security/cve/CVE-2024-45007"
},
{
"category": "external",
"summary": "SUSE Bug 1230175 for CVE-2024-45007",
"url": "https://bugzilla.suse.com/1230175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45007"
},
{
"cve": "CVE-2024-45008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: MT - limit max slots\n\nsyzbot is reporting too large allocation at input_mt_init_slots(), for\nnum_slots is supplied from userspace using ioctl(UI_DEV_CREATE).\n\nSince nobody knows possible max slots, this patch chose 1024.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45008",
"url": "https://www.suse.com/security/cve/CVE-2024-45008"
},
{
"category": "external",
"summary": "SUSE Bug 1230248 for CVE-2024-45008",
"url": "https://bugzilla.suse.com/1230248"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45008"
},
{
"cve": "CVE-2024-45011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: xillybus: Check USB endpoints when probing device\n\nEnsure, as the driver probes the device, that all endpoints that the\ndriver may attempt to access exist and are of the correct type.\n\nAll XillyUSB devices must have a Bulk IN and Bulk OUT endpoint at\naddress 1. This is verified in xillyusb_setup_base_eps().\n\nOn top of that, a XillyUSB device may have additional Bulk OUT\nendpoints. The information about these endpoints\u0027 addresses is deduced\nfrom a data structure (the IDT) that the driver fetches from the device\nwhile probing it. These endpoints are checked in setup_channels().\n\nA XillyUSB device never has more than one IN endpoint, as all data\ntowards the host is multiplexed in this single Bulk IN endpoint. This is\nwhy setup_channels() only checks OUT endpoints.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45011",
"url": "https://www.suse.com/security/cve/CVE-2024-45011"
},
{
"category": "external",
"summary": "SUSE Bug 1230440 for CVE-2024-45011",
"url": "https://bugzilla.suse.com/1230440"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45011"
},
{
"cve": "CVE-2024-45012",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45012"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: use dma non-coherent allocator\n\nCurrently, enabling SG_DEBUG in the kernel will cause nouveau to hit a\nBUG() on startup, when the iommu is enabled:\n\nkernel BUG at include/linux/scatterlist.h:187!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 7 PID: 930 Comm: (udev-worker) Not tainted 6.9.0-rc3Lyude-Test+ #30\nHardware name: MSI MS-7A39/A320M GAMING PRO (MS-7A39), BIOS 1.I0 01/22/2019\nRIP: 0010:sg_init_one+0x85/0xa0\nCode: 69 88 32 01 83 e1 03 f6 c3 03 75 20 a8 01 75 1e 48 09 cb 41 89 54\n24 08 49 89 1c 24 41 89 6c 24 0c 5b 5d 41 5c e9 7b b9 88 00 \u003c0f\u003e 0b 0f 0b\n0f 0b 48 8b 05 5e 46 9a 01 eb b2 66 66 2e 0f 1f 84 00\nRSP: 0018:ffffa776017bf6a0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa77600d87000 RCX: 000000000000002b\nRDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffa77680d87000\nRBP: 000000000000e000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff98f4c46aa508 R11: 0000000000000000 R12: ffff98f4c46aa508\nR13: ffff98f4c46aa008 R14: ffffa77600d4a000 R15: ffffa77600d4a018\nFS: 00007feeb5aae980(0000) GS:ffff98f5c4dc0000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f22cb9a4520 CR3: 00000001043ba000 CR4: 00000000003506f0\nCall Trace:\n \u003cTASK\u003e\n ? die+0x36/0x90\n ? do_trap+0xdd/0x100\n ? sg_init_one+0x85/0xa0\n ? do_error_trap+0x65/0x80\n ? sg_init_one+0x85/0xa0\n ? exc_invalid_op+0x50/0x70\n ? sg_init_one+0x85/0xa0\n ? asm_exc_invalid_op+0x1a/0x20\n ? sg_init_one+0x85/0xa0\n nvkm_firmware_ctor+0x14a/0x250 [nouveau]\n nvkm_falcon_fw_ctor+0x42/0x70 [nouveau]\n ga102_gsp_booter_ctor+0xb4/0x1a0 [nouveau]\n r535_gsp_oneinit+0xb3/0x15f0 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? nvkm_udevice_new+0x95/0x140 [nouveau]\n ? srso_return_thunk+0x5/0x5f\n ? srso_return_thunk+0x5/0x5f\n ? ktime_get+0x47/0xb0\n\nFix this by using the non-coherent allocator instead, I think there\nmight be a better answer to this, but it involve ripping up some of\nAPIs using sg lists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45012",
"url": "https://www.suse.com/security/cve/CVE-2024-45012"
},
{
"category": "external",
"summary": "SUSE Bug 1230441 for CVE-2024-45012",
"url": "https://bugzilla.suse.com/1230441"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45012"
},
{
"cve": "CVE-2024-45013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: move stopping keep-alive into nvme_uninit_ctrl()\n\nCommit 4733b65d82bd (\"nvme: start keep-alive after admin queue setup\")\nmoves starting keep-alive from nvme_start_ctrl() into\nnvme_init_ctrl_finish(), but don\u0027t move stopping keep-alive into\nnvme_uninit_ctrl(), so keep-alive work can be started and keep pending\nafter failing to start controller, finally use-after-free is triggered if\nnvme host driver is unloaded.\n\nThis patch fixes kernel panic when running nvme/004 in case that connection\nfailure is triggered, by moving stopping keep-alive into nvme_uninit_ctrl().\n\nThis way is reasonable because keep-alive is now started in\nnvme_init_ctrl_finish().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45013",
"url": "https://www.suse.com/security/cve/CVE-2024-45013"
},
{
"category": "external",
"summary": "SUSE Bug 1230442 for CVE-2024-45013",
"url": "https://bugzilla.suse.com/1230442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45013"
},
{
"cve": "CVE-2024-45015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45015"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: move dpu_encoder\u0027s connector assignment to atomic_enable()\n\nFor cases where the crtc\u0027s connectors_changed was set without enable/active\ngetting toggled , there is an atomic_enable() call followed by an\natomic_disable() but without an atomic_mode_set().\n\nThis results in a NULL ptr access for the dpu_encoder_get_drm_fmt() call in\nthe atomic_enable() as the dpu_encoder\u0027s connector was cleared in the\natomic_disable() but not re-assigned as there was no atomic_mode_set() call.\n\nFix the NULL ptr access by moving the assignment for atomic_enable() and also\nuse drm_atomic_get_new_connector_for_encoder() to get the connector from\nthe atomic_state.\n\nPatchwork: https://patchwork.freedesktop.org/patch/606729/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45015",
"url": "https://www.suse.com/security/cve/CVE-2024-45015"
},
{
"category": "external",
"summary": "SUSE Bug 1230444 for CVE-2024-45015",
"url": "https://bugzilla.suse.com/1230444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45015"
},
{
"cve": "CVE-2024-45017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec RoCE MPV trace call\n\nPrevent the call trace below from happening, by not allowing IPsec\ncreation over a slave, if master device doesn\u0027t support IPsec.\n\nWARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240 down_read+0x75/0x94\nModules linked in: esp4_offload esp4 act_mirred act_vlan cls_flower sch_ingress mlx5_vdpa vringh vhost_iotlb vdpa mst_pciconf(OE) nfsv3 nfs_acl nfs lockd grace fscache netfs xt_CHECKSUM xt_MASQUERADE xt_conntrack ipt_REJECT nf_reject_ipv4 nft_compat nft_counter nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 rfkill cuse fuse rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_umad ib_iser libiscsi scsi_transport_iscsi rdma_cm ib_ipoib iw_cm ib_cm ipmi_ssif intel_rapl_msr intel_rapl_common amd64_edac edac_mce_amd kvm_amd kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel sha1_ssse3 dell_smbios ib_uverbs aesni_intel crypto_simd dcdbas wmi_bmof dell_wmi_descriptor cryptd pcspkr ib_core acpi_ipmi sp5100_tco ccp i2c_piix4 ipmi_si ptdma k10temp ipmi_devintf ipmi_msghandler acpi_power_meter acpi_cpufreq ext4 mbcache jbd2 sd_mod t10_pi sg mgag200 drm_kms_helper syscopyarea sysfillrect mlx5_core sysimgblt fb_sys_fops cec\n ahci libahci mlxfw drm pci_hyperv_intf libata tg3 sha256_ssse3 tls megaraid_sas i2c_algo_bit psample wmi dm_mirror dm_region_hash dm_log dm_mod [last unloaded: mst_pci]\nCPU: 44 PID: 16136 Comm: kworker/44:3 Kdump: loaded Tainted: GOE 5.15.0-20240509.el8uek.uek7_u3_update_v6.6_ipsec_bf.x86_64 #2\nHardware name: Dell Inc. PowerEdge R7525/074H08, BIOS 2.0.3 01/15/2021\nWorkqueue: events xfrm_state_gc_task\nRIP: 0010:down_read+0x75/0x94\nCode: 00 48 8b 45 08 65 48 8b 14 25 80 fc 01 00 83 e0 02 48 09 d0 48 83 c8 01 48 89 45 08 5d 31 c0 89 c2 89 c6 89 c7 e9 cb 88 3b 00 \u003c0f\u003e 0b 48 8b 45 08 a8 01 74 b2 a8 02 75 ae 48 89 c2 48 83 ca 02 f0\nRSP: 0018:ffffb26387773da8 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffa08b658af900 RCX: 0000000000000001\nRDX: 0000000000000000 RSI: ff886bc5e1366f2f RDI: 0000000000000000\nRBP: ffffa08b658af940 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: ffffa0a9bfb31540\nR13: ffffa0a9bfb37900 R14: 0000000000000000 R15: ffffa0a9bfb37905\nFS: 0000000000000000(0000) GS:ffffa0a9bfb00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055a45ed814e8 CR3: 000000109038a000 CR4: 0000000000350ee0\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n ? down_read+0x75/0x94\n ? __warn+0x80/0x113\n ? down_read+0x75/0x94\n ? report_bug+0xa4/0x11d\n ? handle_bug+0x35/0x8b\n ? exc_invalid_op+0x14/0x75\n ? asm_exc_invalid_op+0x16/0x1b\n ? down_read+0x75/0x94\n ? down_read+0xe/0x94\n mlx5_devcom_for_each_peer_begin+0x29/0x60 [mlx5_core]\n mlx5_ipsec_fs_roce_tx_destroy+0xb1/0x130 [mlx5_core]\n tx_destroy+0x1b/0xc0 [mlx5_core]\n tx_ft_put+0x53/0xc0 [mlx5_core]\n mlx5e_xfrm_free_state+0x45/0x90 [mlx5_core]\n ___xfrm_state_destroy+0x10f/0x1a2\n xfrm_state_gc_task+0x81/0xa9\n process_one_work+0x1f1/0x3c6\n worker_thread+0x53/0x3e4\n ? process_one_work.cold+0x46/0x3c\n kthread+0x127/0x144\n ? set_kthread_struct+0x60/0x52\n ret_from_fork+0x22/0x2d\n \u003c/TASK\u003e\n---[ end trace 5ef7896144d398e1 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45017",
"url": "https://www.suse.com/security/cve/CVE-2024-45017"
},
{
"category": "external",
"summary": "SUSE Bug 1230430 for CVE-2024-45017",
"url": "https://bugzilla.suse.com/1230430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45017"
},
{
"cve": "CVE-2024-45018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45018"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: flowtable: initialise extack before use\n\nFix missing initialisation of extack in flow offload.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45018",
"url": "https://www.suse.com/security/cve/CVE-2024-45018"
},
{
"category": "external",
"summary": "SUSE Bug 1230431 for CVE-2024-45018",
"url": "https://bugzilla.suse.com/1230431"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45018"
},
{
"cve": "CVE-2024-45019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Take state lock during tx timeout reporter\n\nmlx5e_safe_reopen_channels() requires the state lock taken. The\nreferenced changed in the Fixes tag removed the lock to fix another\nissue. This patch adds it back but at a later point (when calling\nmlx5e_safe_reopen_channels()) to avoid the deadlock referenced in the\nFixes tag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45019",
"url": "https://www.suse.com/security/cve/CVE-2024-45019"
},
{
"category": "external",
"summary": "SUSE Bug 1230432 for CVE-2024-45019",
"url": "https://bugzilla.suse.com/1230432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45019"
},
{
"cve": "CVE-2024-45020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45020"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a kernel verifier crash in stacksafe()\n\nDaniel Hodges reported a kernel verifier crash when playing with sched-ext.\nFurther investigation shows that the crash is due to invalid memory access\nin stacksafe(). More specifically, it is the following code:\n\n if (exact != NOT_EXACT \u0026\u0026\n old-\u003estack[spi].slot_type[i % BPF_REG_SIZE] !=\n cur-\u003estack[spi].slot_type[i % BPF_REG_SIZE])\n return false;\n\nThe \u0027i\u0027 iterates old-\u003eallocated_stack.\nIf cur-\u003eallocated_stack \u003c old-\u003eallocated_stack the out-of-bound\naccess will happen.\n\nTo fix the issue add \u0027i \u003e= cur-\u003eallocated_stack\u0027 check such that if\nthe condition is true, stacksafe() should fail. Otherwise,\ncur-\u003estack[spi].slot_type[i % BPF_REG_SIZE] memory access is legal.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45020",
"url": "https://www.suse.com/security/cve/CVE-2024-45020"
},
{
"category": "external",
"summary": "SUSE Bug 1230433 for CVE-2024-45020",
"url": "https://bugzilla.suse.com/1230433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45020"
},
{
"cve": "CVE-2024-45021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg_write_event_control(): fix a user-triggerable oops\n\nwe are *not* guaranteed that anything past the terminating NUL\nis mapped (let alone initialized with anything sane).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45021",
"url": "https://www.suse.com/security/cve/CVE-2024-45021"
},
{
"category": "external",
"summary": "SUSE Bug 1230434 for CVE-2024-45021",
"url": "https://bugzilla.suse.com/1230434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45021"
},
{
"cve": "CVE-2024-45022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0\n\nThe __vmap_pages_range_noflush() assumes its argument pages** contains\npages with the same page shift. However, since commit e9c3cda4d86e (\"mm,\nvmalloc: fix high order __GFP_NOFAIL allocations\"), if gfp_flags includes\n__GFP_NOFAIL with high order in vm_area_alloc_pages() and page allocation\nfailed for high order, the pages** may contain two different page shifts\n(high order and order-0). This could lead __vmap_pages_range_noflush() to\nperform incorrect mappings, potentially resulting in memory corruption.\n\nUsers might encounter this as follows (vmap_allow_huge = true, 2M is for\nPMD_SIZE):\n\nkvmalloc(2M, __GFP_NOFAIL|GFP_X)\n __vmalloc_node_range_noprof(vm_flags=VM_ALLOW_HUGE_VMAP)\n vm_area_alloc_pages(order=9) ---\u003e order-9 allocation failed and fallback to order-0\n vmap_pages_range()\n vmap_pages_range_noflush()\n __vmap_pages_range_noflush(page_shift = 21) ----\u003e wrong mapping happens\n\nWe can remove the fallback code because if a high-order allocation fails,\n__vmalloc_node_range_noprof() will retry with order-0. Therefore, it is\nunnecessary to fallback to order-0 here. Therefore, fix this by removing\nthe fallback code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45022",
"url": "https://www.suse.com/security/cve/CVE-2024-45022"
},
{
"category": "external",
"summary": "SUSE Bug 1230435 for CVE-2024-45022",
"url": "https://bugzilla.suse.com/1230435"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45022"
},
{
"cve": "CVE-2024-45023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: Fix data corruption for degraded array with slow disk\n\nread_balance() will avoid reading from slow disks as much as possible,\nhowever, if valid data only lands in slow disks, and a new normal disk\nis still in recovery, unrecovered data can be read:\n\nraid1_read_request\n read_balance\n raid1_should_read_first\n -\u003e return false\n choose_best_rdev\n -\u003e normal disk is not recovered, return -1\n choose_bb_rdev\n -\u003e missing the checking of recovery, return the normal disk\n -\u003e read unrecovered data\n\nRoot cause is that the checking of recovery is missing in\nchoose_bb_rdev(). Hence add such checking to fix the problem.\n\nAlso fix similar problem in choose_slow_rdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45023",
"url": "https://www.suse.com/security/cve/CVE-2024-45023"
},
{
"category": "external",
"summary": "SUSE Bug 1230455 for CVE-2024-45023",
"url": "https://bugzilla.suse.com/1230455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45023"
},
{
"cve": "CVE-2024-45026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix error recovery leading to data corruption on ESE devices\n\nExtent Space Efficient (ESE) or thin provisioned volumes need to be\nformatted on demand during usual IO processing.\n\nThe dasd_ese_needs_format function checks for error codes that signal\nthe non existence of a proper track format.\n\nThe check for incorrect length is to imprecise since other error cases\nleading to transport of insufficient data also have this flag set.\nThis might lead to data corruption in certain error cases for example\nduring a storage server warmstart.\n\nFix by removing the check for incorrect length and replacing by\nexplicitly checking for invalid track format in transport mode.\n\nAlso remove the check for file protected since this is not a valid\nESE handling case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45026",
"url": "https://www.suse.com/security/cve/CVE-2024-45026"
},
{
"category": "external",
"summary": "SUSE Bug 1230454 for CVE-2024-45026",
"url": "https://bugzilla.suse.com/1230454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45026"
},
{
"cve": "CVE-2024-45028",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45028"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: mmc_test: Fix NULL dereference on allocation failure\n\nIf the \"test-\u003ehighmem = alloc_pages()\" allocation fails then calling\n__free_pages(test-\u003ehighmem) will result in a NULL dereference. Also\nchange the error code to -ENOMEM instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45028",
"url": "https://www.suse.com/security/cve/CVE-2024-45028"
},
{
"category": "external",
"summary": "SUSE Bug 1230450 for CVE-2024-45028",
"url": "https://bugzilla.suse.com/1230450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45028"
},
{
"cve": "CVE-2024-45029",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45029"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: tegra: Do not mark ACPI devices as irq safe\n\nOn ACPI machines, the tegra i2c module encounters an issue due to a\nmutex being called inside a spinlock. This leads to the following bug:\n\n\tBUG: sleeping function called from invalid context at kernel/locking/mutex.c:585\n\t...\n\n\tCall trace:\n\t__might_sleep\n\t__mutex_lock_common\n\tmutex_lock_nested\n\tacpi_subsys_runtime_resume\n\trpm_resume\n\ttegra_i2c_xfer\n\nThe problem arises because during __pm_runtime_resume(), the spinlock\n\u0026dev-\u003epower.lock is acquired before rpm_resume() is called. Later,\nrpm_resume() invokes acpi_subsys_runtime_resume(), which relies on\nmutexes, triggering the error.\n\nTo address this issue, devices on ACPI are now marked as not IRQ-safe,\nconsidering the dependency of acpi_subsys_runtime_resume() on mutexes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45029",
"url": "https://www.suse.com/security/cve/CVE-2024-45029"
},
{
"category": "external",
"summary": "SUSE Bug 1230451 for CVE-2024-45029",
"url": "https://bugzilla.suse.com/1230451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45029"
},
{
"cve": "CVE-2024-45030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: cope with large MAX_SKB_FRAGS\n\nSabrina reports that the igb driver does not cope well with large\nMAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload\ncorruption on TX.\n\nAn easy reproducer is to run ssh to connect to the machine. With\nMAX_SKB_FRAGS=17 it works, with MAX_SKB_FRAGS=45 it fails. This has\nbeen reported originally in\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2265320\n\nThe root cause of the issue is that the driver does not take into\naccount properly the (possibly large) shared info size when selecting\nthe ring layout, and will try to fit two packets inside the same 4K\npage even when the 1st fraglist will trump over the 2nd head.\n\nAddress the issue by checking if 2K buffers are insufficient.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45030",
"url": "https://www.suse.com/security/cve/CVE-2024-45030"
},
{
"category": "external",
"summary": "SUSE Bug 1230457 for CVE-2024-45030",
"url": "https://bugzilla.suse.com/1230457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-45030"
},
{
"cve": "CVE-2024-46672",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46672"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion\n\nwpa_supplicant 2.11 sends since 1efdba5fdc2c (\"Handle PMKSA flush in the\ndriver for SAE/OWE offload cases\") SSID based PMKSA del commands.\nbrcmfmac is not prepared and tries to dereference the NULL bssid and\npmkid pointers in cfg80211_pmksa. PMKID_V3 operations support SSID based\nupdates so copy the SSID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46672",
"url": "https://www.suse.com/security/cve/CVE-2024-46672"
},
{
"category": "external",
"summary": "SUSE Bug 1230459 for CVE-2024-46672",
"url": "https://bugzilla.suse.com/1230459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46672"
},
{
"cve": "CVE-2024-46673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46673"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: aacraid: Fix double-free on probe failure\n\naac_probe_one() calls hardware-specific init functions through the\naac_driver_ident::init pointer, all of which eventually call down to\naac_init_adapter().\n\nIf aac_init_adapter() fails after allocating memory for aac_dev::queues,\nit frees the memory but does not clear that member.\n\nAfter the hardware-specific init function returns an error,\naac_probe_one() goes down an error path that frees the memory pointed to\nby aac_dev::queues, resulting.in a double-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46673",
"url": "https://www.suse.com/security/cve/CVE-2024-46673"
},
{
"category": "external",
"summary": "SUSE Bug 1230506 for CVE-2024-46673",
"url": "https://bugzilla.suse.com/1230506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46673"
},
{
"cve": "CVE-2024-46674",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46674"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: st: fix probed platform device ref count on probe error path\n\nThe probe function never performs any paltform device allocation, thus\nerror path \"undo_platform_dev_alloc\" is entirely bogus. It drops the\nreference count from the platform device being probed. If error path is\ntriggered, this will lead to unbalanced device reference counts and\npremature release of device resources, thus possible use-after-free when\nreleasing remaining devm-managed resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46674",
"url": "https://www.suse.com/security/cve/CVE-2024-46674"
},
{
"category": "external",
"summary": "SUSE Bug 1230507 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230507"
},
{
"category": "external",
"summary": "SUSE Bug 1230599 for CVE-2024-46674",
"url": "https://bugzilla.suse.com/1230599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "important"
}
],
"title": "CVE-2024-46674"
},
{
"cve": "CVE-2024-46675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46675"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: core: Prevent USB core invalid event buffer address access\n\nThis commit addresses an issue where the USB core could access an\ninvalid event buffer address during runtime suspend, potentially causing\nSMMU faults and other memory issues in Exynos platforms. The problem\narises from the following sequence.\n 1. In dwc3_gadget_suspend, there is a chance of a timeout when\n moving the USB core to the halt state after clearing the\n run/stop bit by software.\n 2. In dwc3_core_exit, the event buffer is cleared regardless of\n the USB core\u0027s status, which may lead to an SMMU faults and\n other memory issues. if the USB core tries to access the event\n buffer address.\n\nTo prevent this hardware quirk on Exynos platforms, this commit ensures\nthat the event buffer address is not cleared by software when the USB\ncore is active during runtime suspend by checking its status before\nclearing the buffer address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46675",
"url": "https://www.suse.com/security/cve/CVE-2024-46675"
},
{
"category": "external",
"summary": "SUSE Bug 1230533 for CVE-2024-46675",
"url": "https://bugzilla.suse.com/1230533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46675"
},
{
"cve": "CVE-2024-46676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46676"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Add poll mod list filling check\n\nIn case of im_protocols value is 1 and tm_protocols value is 0 this\ncombination successfully passes the check\n\u0027if (!im_protocols \u0026\u0026 !tm_protocols)\u0027 in the nfc_start_poll().\nBut then after pn533_poll_create_mod_list() call in pn533_start_poll()\npoll mod list will remain empty and dev-\u003epoll_mod_count will remain 0\nwhich lead to division by zero.\n\nNormally no im protocol has value 1 in the mask, so this combination is\nnot expected by driver. But these protocol values actually come from\nuserspace via Netlink interface (NFC_CMD_START_POLL operation). So a\nbroken or malicious program may pass a message containing a \"bad\"\ncombination of protocol parameter values so that dev-\u003epoll_mod_count\nis not incremented inside pn533_poll_create_mod_list(), thus leading\nto division by zero.\nCall trace looks like:\nnfc_genl_start_poll()\n nfc_start_poll()\n -\u003estart_poll()\n pn533_start_poll()\n\nAdd poll mod list filling check.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46676",
"url": "https://www.suse.com/security/cve/CVE-2024-46676"
},
{
"category": "external",
"summary": "SUSE Bug 1230535 for CVE-2024-46676",
"url": "https://bugzilla.suse.com/1230535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46676"
},
{
"cve": "CVE-2024-46677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46677"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: fix a potential NULL pointer dereference\n\nWhen sockfd_lookup() fails, gtp_encap_enable_socket() returns a\nNULL pointer, but its callers only check for error pointers thus miss\nthe NULL pointer case.\n\nFix it by returning an error pointer with the error code carried from\nsockfd_lookup().\n\n(I found this bug during code inspection.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46677",
"url": "https://www.suse.com/security/cve/CVE-2024-46677"
},
{
"category": "external",
"summary": "SUSE Bug 1230549 for CVE-2024-46677",
"url": "https://bugzilla.suse.com/1230549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46677"
},
{
"cve": "CVE-2024-46679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46679"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: check device is present when getting link settings\n\nA sysfs reader can race with a device reset or removal, attempting to\nread device state when the device is not actually present. eg:\n\n [exception RIP: qed_get_current_link+17]\n #8 [ffffb9e4f2907c48] qede_get_link_ksettings at ffffffffc07a994a [qede]\n #9 [ffffb9e4f2907cd8] __rh_call_get_link_ksettings at ffffffff992b01a3\n #10 [ffffb9e4f2907d38] __ethtool_get_link_ksettings at ffffffff992b04e4\n #11 [ffffb9e4f2907d90] duplex_show at ffffffff99260300\n #12 [ffffb9e4f2907e38] dev_attr_show at ffffffff9905a01c\n #13 [ffffb9e4f2907e50] sysfs_kf_seq_show at ffffffff98e0145b\n #14 [ffffb9e4f2907e68] seq_read at ffffffff98d902e3\n #15 [ffffb9e4f2907ec8] vfs_read at ffffffff98d657d1\n #16 [ffffb9e4f2907f00] ksys_read at ffffffff98d65c3f\n #17 [ffffb9e4f2907f38] do_syscall_64 at ffffffff98a052fb\n\n crash\u003e struct net_device.state ffff9a9d21336000\n state = 5,\n\nstate 5 is __LINK_STATE_START (0b1) and __LINK_STATE_NOCARRIER (0b100).\nThe device is not present, note lack of __LINK_STATE_PRESENT (0b10).\n\nThis is the same sort of panic as observed in commit 4224cfd7fb65\n(\"net-sysfs: add check for netdevice being present to speed_show\").\n\nThere are many other callers of __ethtool_get_link_ksettings() which\ndon\u0027t have a device presence check.\n\nMove this check into ethtool to protect all callers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46679",
"url": "https://www.suse.com/security/cve/CVE-2024-46679"
},
{
"category": "external",
"summary": "SUSE Bug 1230556 for CVE-2024-46679",
"url": "https://bugzilla.suse.com/1230556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46679"
},
{
"cve": "CVE-2024-46685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46685"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix potential NULL dereference in pcs_get_function()\n\npinmux_generic_get_function() can return NULL and the pointer \u0027function\u0027\nwas dereferenced without checking against NULL. Add checking of pointer\n\u0027function\u0027 in pcs_get_function().\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46685",
"url": "https://www.suse.com/security/cve/CVE-2024-46685"
},
{
"category": "external",
"summary": "SUSE Bug 1230515 for CVE-2024-46685",
"url": "https://bugzilla.suse.com/1230515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46685"
},
{
"cve": "CVE-2024-46686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46686"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()\n\nThis happens when called from SMB2_read() while using rdma\nand reaching the rdma_readwrite_threshold.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46686",
"url": "https://www.suse.com/security/cve/CVE-2024-46686"
},
{
"category": "external",
"summary": "SUSE Bug 1230517 for CVE-2024-46686",
"url": "https://bugzilla.suse.com/1230517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46686"
},
{
"cve": "CVE-2024-46687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46687"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()\n\n[BUG]\nThere is an internal report that KASAN is reporting use-after-free, with\nthe following backtrace:\n\n BUG: KASAN: slab-use-after-free in btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n Read of size 4 at addr ffff8881117cec28 by task kworker/u16:2/45\n CPU: 1 UID: 0 PID: 45 Comm: kworker/u16:2 Not tainted 6.11.0-rc2-next-20240805-default+ #76\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n Workqueue: btrfs-endio btrfs_end_bio_work [btrfs]\n Call Trace:\n dump_stack_lvl+0x61/0x80\n print_address_description.constprop.0+0x5e/0x2f0\n print_report+0x118/0x216\n kasan_report+0x11d/0x1f0\n btrfs_check_read_bio+0xa68/0xb70 [btrfs]\n process_one_work+0xce0/0x12a0\n worker_thread+0x717/0x1250\n kthread+0x2e3/0x3c0\n ret_from_fork+0x2d/0x70\n ret_from_fork_asm+0x11/0x20\n\n Allocated by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n __kasan_slab_alloc+0x7d/0x80\n kmem_cache_alloc_noprof+0x16e/0x3e0\n mempool_alloc_noprof+0x12e/0x310\n bio_alloc_bioset+0x3f0/0x7a0\n btrfs_bio_alloc+0x2e/0x50 [btrfs]\n submit_extent_page+0x4d1/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 20917:\n kasan_save_stack+0x37/0x60\n kasan_save_track+0x10/0x30\n kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x4b/0x60\n kmem_cache_free+0x214/0x5d0\n bio_free+0xed/0x180\n end_bbio_data_read+0x1cc/0x580 [btrfs]\n btrfs_submit_chunk+0x98d/0x1880 [btrfs]\n btrfs_submit_bio+0x33/0x70 [btrfs]\n submit_one_bio+0xd4/0x130 [btrfs]\n submit_extent_page+0x3ea/0xdb0 [btrfs]\n btrfs_do_readpage+0x8b4/0x12a0 [btrfs]\n btrfs_readahead+0x29a/0x430 [btrfs]\n read_pages+0x1a7/0xc60\n page_cache_ra_unbounded+0x2ad/0x560\n filemap_get_pages+0x629/0xa20\n filemap_read+0x335/0xbf0\n vfs_read+0x790/0xcb0\n ksys_read+0xfd/0x1d0\n do_syscall_64+0x6d/0x140\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[CAUSE]\nAlthough I cannot reproduce the error, the report itself is good enough\nto pin down the cause.\n\nThe call trace is the regular endio workqueue context, but the\nfree-by-task trace is showing that during btrfs_submit_chunk() we\nalready hit a critical error, and is calling btrfs_bio_end_io() to error\nout. And the original endio function called bio_put() to free the whole\nbio.\n\nThis means a double freeing thus causing use-after-free, e.g.:\n\n1. Enter btrfs_submit_bio() with a read bio\n The read bio length is 128K, crossing two 64K stripes.\n\n2. The first run of btrfs_submit_chunk()\n\n2.1 Call btrfs_map_block(), which returns 64K\n2.2 Call btrfs_split_bio()\n Now there are two bios, one referring to the first 64K, the other\n referring to the second 64K.\n2.3 The first half is submitted.\n\n3. The second run of btrfs_submit_chunk()\n\n3.1 Call btrfs_map_block(), which by somehow failed\n Now we call btrfs_bio_end_io() to handle the error\n\n3.2 btrfs_bio_end_io() calls the original endio function\n Which is end_bbio_data_read(), and it calls bio_put() for the\n original bio.\n\n Now the original bio is freed.\n\n4. The submitted first 64K bio finished\n Now we call into btrfs_check_read_bio() and tries to advance the bio\n iter.\n But since the original bio (thus its iter) is already freed, we\n trigger the above use-after free.\n\n And even if the memory is not poisoned/corrupted, we will later call\n the original endio function, causing a double freeing.\n\n[FIX]\nInstead of calling btrfs_bio_end_io(), call btrfs_orig_bbio_end_io(),\nwhich has the extra check on split bios and do the pr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46687",
"url": "https://www.suse.com/security/cve/CVE-2024-46687"
},
{
"category": "external",
"summary": "SUSE Bug 1230518 for CVE-2024-46687",
"url": "https://bugzilla.suse.com/1230518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46687"
},
{
"cve": "CVE-2024-46689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: cmd-db: Map shared memory as WC, not WB\n\nLinux does not write into cmd-db region. This region of memory is write\nprotected by XPU. XPU may sometime falsely detect clean cache eviction\nas \"write\" into the write protected region leading to secure interrupt\nwhich causes an endless loop somewhere in Trust Zone.\n\nThe only reason it is working right now is because Qualcomm Hypervisor\nmaps the same region as Non-Cacheable memory in Stage 2 translation\ntables. The issue manifests if we want to use another hypervisor (like\nXen or KVM), which does not know anything about those specific mappings.\n\nChanging the mapping of cmd-db memory from MEMREMAP_WB to MEMREMAP_WT/WC\nremoves dependency on correct mappings in Stage 2 tables. This patch\nfixes the issue by updating the mapping to MEMREMAP_WC.\n\nI tested this on SA8155P with Xen.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46689",
"url": "https://www.suse.com/security/cve/CVE-2024-46689"
},
{
"category": "external",
"summary": "SUSE Bug 1230524 for CVE-2024-46689",
"url": "https://bugzilla.suse.com/1230524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46689"
},
{
"cve": "CVE-2024-46691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46691"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Move unregister out of atomic section\n\nCommit \u00279329933699b3 (\"soc: qcom: pmic_glink: Make client-lock\nnon-sleeping\")\u0027 moved the pmic_glink client list under a spinlock, as it\nis accessed by the rpmsg/glink callback, which in turn is invoked from\nIRQ context.\n\nThis means that ucsi_unregister() is now called from atomic context,\nwhich isn\u0027t feasible as it\u0027s expecting a sleepable context. An effort is\nunder way to get GLINK to invoke its callbacks in a sleepable context,\nbut until then lets schedule the unregistration.\n\nA side effect of this is that ucsi_unregister() can now happen\nafter the remote processor, and thereby the communication link with it, is\ngone. pmic_glink_send() is amended with a check to avoid the resulting NULL\npointer dereference.\nThis does however result in the user being informed about this error by\nthe following entry in the kernel log:\n\n ucsi_glink.pmic_glink_ucsi pmic_glink.ucsi.0: failed to send UCSI write request: -5",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46691",
"url": "https://www.suse.com/security/cve/CVE-2024-46691"
},
{
"category": "external",
"summary": "SUSE Bug 1230526 for CVE-2024-46691",
"url": "https://bugzilla.suse.com/1230526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46691"
},
{
"cve": "CVE-2024-46692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46692"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: qcom: scm: Mark get_wq_ctx() as atomic call\n\nCurrently get_wq_ctx() is wrongly configured as a standard call. When two\nSMC calls are in sleep and one SMC wakes up, it calls get_wq_ctx() to\nresume the corresponding sleeping thread. But if get_wq_ctx() is\ninterrupted, goes to sleep and another SMC call is waiting to be allocated\na waitq context, it leads to a deadlock.\n\nTo avoid this get_wq_ctx() must be an atomic call and can\u0027t be a standard\nSMC call. Hence mark get_wq_ctx() as a fast call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46692",
"url": "https://www.suse.com/security/cve/CVE-2024-46692"
},
{
"category": "external",
"summary": "SUSE Bug 1230520 for CVE-2024-46692",
"url": "https://bugzilla.suse.com/1230520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46692"
},
{
"cve": "CVE-2024-46693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46693"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: qcom: pmic_glink: Fix race during initialization\n\nAs pointed out by Stephen Boyd it is possible that during initialization\nof the pmic_glink child drivers, the protection-domain notifiers fires,\nand the associated work is scheduled, before the client registration\nreturns and as a result the local \"client\" pointer has been initialized.\n\nThe outcome of this is a NULL pointer dereference as the \"client\"\npointer is blindly dereferenced.\n\nTimeline provided by Stephen:\n CPU0 CPU1\n ---- ----\n ucsi-\u003eclient = NULL;\n devm_pmic_glink_register_client()\n client-\u003epdr_notify(client-\u003epriv, pg-\u003eclient_state)\n pmic_glink_ucsi_pdr_notify()\n schedule_work(\u0026ucsi-\u003eregister_work)\n \u003cschedule away\u003e\n pmic_glink_ucsi_register()\n ucsi_register()\n pmic_glink_ucsi_read_version()\n pmic_glink_ucsi_read()\n pmic_glink_ucsi_read()\n pmic_glink_send(ucsi-\u003eclient)\n \u003cclient is NULL BAD\u003e\n ucsi-\u003eclient = client // Too late!\n\nThis code is identical across the altmode, battery manager and usci\nchild drivers.\n\nResolve this by splitting the allocation of the \"client\" object and the\nregistration thereof into two operations.\n\nThis only happens if the protection domain registry is populated at the\ntime of registration, which by the introduction of commit \u00271ebcde047c54\n(\"soc: qcom: add pd-mapper implementation\")\u0027 became much more likely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46693",
"url": "https://www.suse.com/security/cve/CVE-2024-46693"
},
{
"category": "external",
"summary": "SUSE Bug 1230521 for CVE-2024-46693",
"url": "https://bugzilla.suse.com/1230521"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46693"
},
{
"cve": "CVE-2024-46694",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46694"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: avoid using null object of framebuffer\n\nInstead of using state-\u003efb-\u003eobj[0] directly, get object from framebuffer\nby calling drm_gem_fb_get_obj() and return error code when object is\nnull to avoid using null object of framebuffer.\n\n(cherry picked from commit 73dd0ad9e5dad53766ea3e631303430116f834b3)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46694",
"url": "https://www.suse.com/security/cve/CVE-2024-46694"
},
{
"category": "external",
"summary": "SUSE Bug 1230511 for CVE-2024-46694",
"url": "https://bugzilla.suse.com/1230511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46694"
},
{
"cve": "CVE-2024-46695",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46695"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux,smack: don\u0027t bypass permissions check in inode_setsecctx hook\n\nMarek Gresko reports that the root user on an NFS client is able to\nchange the security labels on files on an NFS filesystem that is\nexported with root squashing enabled.\n\nThe end of the kerneldoc comment for __vfs_setxattr_noperm() states:\n\n * This function requires the caller to lock the inode\u0027s i_mutex before it\n * is executed. It also assumes that the caller will make the appropriate\n * permission checks.\n\nnfsd_setattr() does do permissions checking via fh_verify() and\nnfsd_permission(), but those don\u0027t do all the same permissions checks\nthat are done by security_inode_setxattr() and its related LSM hooks do.\n\nSince nfsd_setattr() is the only consumer of security_inode_setsecctx(),\nsimplest solution appears to be to replace the call to\n__vfs_setxattr_noperm() with a call to __vfs_setxattr_locked(). This\nfixes the above issue and has the added benefit of causing nfsd to\nrecall conflicting delegations on a file when a client tries to change\nits security label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46695",
"url": "https://www.suse.com/security/cve/CVE-2024-46695"
},
{
"category": "external",
"summary": "SUSE Bug 1230519 for CVE-2024-46695",
"url": "https://bugzilla.suse.com/1230519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46695"
},
{
"cve": "CVE-2024-46702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46702"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthunderbolt: Mark XDomain as unplugged when router is removed\n\nI noticed that when we do discrete host router NVM upgrade and it gets\nhot-removed from the PCIe side as a result of NVM firmware authentication,\nif there is another host connected with enabled paths we hang in tearing\nthem down. This is due to fact that the Thunderbolt networking driver\nalso tries to cleanup the paths and ends up blocking in\ntb_disconnect_xdomain_paths() waiting for the domain lock.\n\nHowever, at this point we already cleaned the paths in tb_stop() so\nthere is really no need for tb_disconnect_xdomain_paths() to do that\nanymore. Furthermore it already checks if the XDomain is unplugged and\nbails out early so take advantage of that and mark the XDomain as\nunplugged when we remove the parent router.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46702",
"url": "https://www.suse.com/security/cve/CVE-2024-46702"
},
{
"category": "external",
"summary": "SUSE Bug 1230589 for CVE-2024-46702",
"url": "https://bugzilla.suse.com/1230589"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46702"
},
{
"cve": "CVE-2024-46706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46706"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: fsl_lpuart: mark last busy before uart_add_one_port\n\nWith \"earlycon initcall_debug=1 loglevel=8\" in bootargs, kernel\nsometimes boot hang. It is because normal console still is not ready,\nbut runtime suspend is called, so early console putchar will hang\nin waiting TRDE set in UARTSTAT.\n\nThe lpuart driver has auto suspend delay set to 3000ms, but during\nuart_add_one_port, a child device serial ctrl will added and probed with\nits pm runtime enabled(see serial_ctrl.c).\nThe runtime suspend call path is:\ndevice_add\n |-\u003e bus_probe_device\n |-\u003edevice_initial_probe\n\t |-\u003e__device_attach\n |-\u003e pm_runtime_get_sync(dev-\u003eparent);\n\t\t\t |-\u003e pm_request_idle(dev);\n\t\t\t |-\u003e pm_runtime_put(dev-\u003eparent);\n\nSo in the end, before normal console ready, the lpuart get runtime\nsuspended. And earlycon putchar will hang.\n\nTo address the issue, mark last busy just after pm_runtime_enable,\nthree seconds is long enough to switch from bootconsole to normal\nconsole.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46706",
"url": "https://www.suse.com/security/cve/CVE-2024-46706"
},
{
"category": "external",
"summary": "SUSE Bug 1230580 for CVE-2024-46706",
"url": "https://bugzilla.suse.com/1230580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46706"
},
{
"cve": "CVE-2024-46707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46707"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3\n\nOn a system with a GICv3, if a guest hasn\u0027t been configured with\nGICv3 and that the host is not capable of GICv2 emulation,\na write to any of the ICC_*SGI*_EL1 registers is trapped to EL2.\n\nWe therefore try to emulate the SGI access, only to hit a NULL\npointer as no private interrupt is allocated (no GIC, remember?).\n\nThe obvious fix is to give the guest what it deserves, in the\nshape of a UNDEF exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46707",
"url": "https://www.suse.com/security/cve/CVE-2024-46707"
},
{
"category": "external",
"summary": "SUSE Bug 1230582 for CVE-2024-46707",
"url": "https://bugzilla.suse.com/1230582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46707"
},
{
"cve": "CVE-2024-46709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46709"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Fix prime with external buffers\n\nMake sure that for external buffers mapping goes through the dma_buf\ninterface instead of trying to access pages directly.\n\nExternal buffers might not provide direct access to readable/writable\npages so to make sure the bo\u0027s created from external dma_bufs can be\nread dma_buf interface has to be used.\n\nFixes crashes in IGT\u0027s kms_prime with vgem. Regular desktop usage won\u0027t\ntrigger this due to the fact that virtual machines will not have\nmultiple GPUs but it enables better test coverage in IGT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46709",
"url": "https://www.suse.com/security/cve/CVE-2024-46709"
},
{
"category": "external",
"summary": "SUSE Bug 1230539 for CVE-2024-46709",
"url": "https://bugzilla.suse.com/1230539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46709"
},
{
"cve": "CVE-2024-46710",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46710"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Prevent unmapping active read buffers\n\nThe kms paths keep a persistent map active to read and compare the cursor\nbuffer. These maps can race with each other in simple scenario where:\na) buffer \"a\" mapped for update\nb) buffer \"a\" mapped for compare\nc) do the compare\nd) unmap \"a\" for compare\ne) update the cursor\nf) unmap \"a\" for update\nAt step \"e\" the buffer has been unmapped and the read contents is bogus.\n\nPrevent unmapping of active read buffers by simply keeping a count of\nhow many paths have currently active maps and unmap only when the count\nreaches 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46710",
"url": "https://www.suse.com/security/cve/CVE-2024-46710"
},
{
"category": "external",
"summary": "SUSE Bug 1230540 for CVE-2024-46710",
"url": "https://bugzilla.suse.com/1230540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46710"
},
{
"cve": "CVE-2024-46714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Skip wbscl_set_scaler_filter if filter is null\n\nCallers can pass null in filter (i.e. from returned from the function\nwbscl_get_filter_coeffs_16p) and a null check is added to ensure that is\nnot the case.\n\nThis fixes 4 NULL_RETURNS issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46714",
"url": "https://www.suse.com/security/cve/CVE-2024-46714"
},
{
"category": "external",
"summary": "SUSE Bug 1230699 for CVE-2024-46714",
"url": "https://bugzilla.suse.com/1230699"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46714"
},
{
"cve": "CVE-2024-46715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46715"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: iio: add missing checks on iio_info\u0027s callback access\n\nSome callbacks from iio_info structure are accessed without any check, so\nif a driver doesn\u0027t implement them trying to access the corresponding\nsysfs entries produce a kernel oops such as:\n\n[ 2203.527791] Unable to handle kernel NULL pointer dereference at virtual address 00000000 when execute\n[...]\n[ 2203.783416] Call trace:\n[ 2203.783429] iio_read_channel_info_avail from dev_attr_show+0x18/0x48\n[ 2203.789807] dev_attr_show from sysfs_kf_seq_show+0x90/0x120\n[ 2203.794181] sysfs_kf_seq_show from seq_read_iter+0xd0/0x4e4\n[ 2203.798555] seq_read_iter from vfs_read+0x238/0x2a0\n[ 2203.802236] vfs_read from ksys_read+0xa4/0xd4\n[ 2203.805385] ksys_read from ret_fast_syscall+0x0/0x54\n[ 2203.809135] Exception stack(0xe0badfa8 to 0xe0badff0)\n[ 2203.812880] dfa0: 00000003 b6f10f80 00000003 b6eab000 00020000 00000000\n[ 2203.819746] dfc0: 00000003 b6f10f80 7ff00000 00000003 00000003 00000000 00020000 00000000\n[ 2203.826619] dfe0: b6e1bc88 bed80958 b6e1bc94 b6e1bcb0\n[ 2203.830363] Code: bad PC value\n[ 2203.832695] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46715",
"url": "https://www.suse.com/security/cve/CVE-2024-46715"
},
{
"category": "external",
"summary": "SUSE Bug 1230700 for CVE-2024-46715",
"url": "https://bugzilla.suse.com/1230700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46715"
},
{
"cve": "CVE-2024-46716",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46716"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46716",
"url": "https://www.suse.com/security/cve/CVE-2024-46716"
},
{
"category": "external",
"summary": "SUSE Bug 1230715 for CVE-2024-46716",
"url": "https://bugzilla.suse.com/1230715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46716"
},
{
"cve": "CVE-2024-46717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46717"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: SHAMPO, Fix incorrect page release\n\nUnder the following conditions:\n1) No skb created yet\n2) header_size == 0 (no SHAMPO header)\n3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the\n last page fragment of a SHAMPO header page)\n\na new skb is formed with a page that is NOT a SHAMPO header page (it\nis a regular data page). Further down in the same function\n(mlx5e_handle_rx_cqe_mpwrq_shampo()), a SHAMPO header page from\nheader_index is released. This is wrong and it leads to SHAMPO header\npages being released more than once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46717",
"url": "https://www.suse.com/security/cve/CVE-2024-46717"
},
{
"category": "external",
"summary": "SUSE Bug 1230719 for CVE-2024-46717",
"url": "https://bugzilla.suse.com/1230719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46717"
},
{
"cve": "CVE-2024-46719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46719"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46719",
"url": "https://www.suse.com/security/cve/CVE-2024-46719"
},
{
"category": "external",
"summary": "SUSE Bug 1230722 for CVE-2024-46719",
"url": "https://bugzilla.suse.com/1230722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46719"
},
{
"cve": "CVE-2024-46720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46720"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix dereference after null check\n\ncheck the pointer hive before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46720",
"url": "https://www.suse.com/security/cve/CVE-2024-46720"
},
{
"category": "external",
"summary": "SUSE Bug 1230724 for CVE-2024-46720",
"url": "https://bugzilla.suse.com/1230724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46720"
},
{
"cve": "CVE-2024-46722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46722"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix mc_data out-of-bounds read warning\n\nClear warning that read mc_data[i-1] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46722",
"url": "https://www.suse.com/security/cve/CVE-2024-46722"
},
{
"category": "external",
"summary": "SUSE Bug 1230712 for CVE-2024-46722",
"url": "https://bugzilla.suse.com/1230712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46722"
},
{
"cve": "CVE-2024-46723",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46723"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix ucode out-of-bounds read warning\n\nClear warning that read ucode[] may out-of-bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46723",
"url": "https://www.suse.com/security/cve/CVE-2024-46723"
},
{
"category": "external",
"summary": "SUSE Bug 1230702 for CVE-2024-46723",
"url": "https://bugzilla.suse.com/1230702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46723"
},
{
"cve": "CVE-2024-46724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number\n\nCheck the fb_channel_number range to avoid the array out-of-bounds\nread error",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46724",
"url": "https://www.suse.com/security/cve/CVE-2024-46724"
},
{
"category": "external",
"summary": "SUSE Bug 1230725 for CVE-2024-46724",
"url": "https://bugzilla.suse.com/1230725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46724"
},
{
"cve": "CVE-2024-46725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix out-of-bounds write warning\n\nCheck the ring type value to fix the out-of-bounds\nwrite warning",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46725",
"url": "https://www.suse.com/security/cve/CVE-2024-46725"
},
{
"category": "external",
"summary": "SUSE Bug 1230705 for CVE-2024-46725",
"url": "https://bugzilla.suse.com/1230705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46725"
},
{
"cve": "CVE-2024-46726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46726"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure index calculation will not overflow\n\n[WHY \u0026 HOW]\nMake sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will\nnever overflow and exceess array size.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46726",
"url": "https://www.suse.com/security/cve/CVE-2024-46726"
},
{
"category": "external",
"summary": "SUSE Bug 1230706 for CVE-2024-46726",
"url": "https://bugzilla.suse.com/1230706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46726"
},
{
"cve": "CVE-2024-46728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check index for aux_rd_interval before using\n\naux_rd_interval has size of 7 and should be checked.\n\nThis fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46728",
"url": "https://www.suse.com/security/cve/CVE-2024-46728"
},
{
"category": "external",
"summary": "SUSE Bug 1230703 for CVE-2024-46728",
"url": "https://bugzilla.suse.com/1230703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46728"
},
{
"cve": "CVE-2024-46729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46729"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix incorrect size calculation for loop\n\n[WHY]\nfe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is\nlager than the array size.\n\n[HOW]\nDivide byte size 20 by its element size.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46729",
"url": "https://www.suse.com/security/cve/CVE-2024-46729"
},
{
"category": "external",
"summary": "SUSE Bug 1230704 for CVE-2024-46729",
"url": "https://bugzilla.suse.com/1230704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46729"
},
{
"cve": "CVE-2024-46730",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46730"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Ensure array index tg_inst won\u0027t be -1\n\n[WHY \u0026 HOW]\ntg_inst will be a negative if timing_generator_count equals 0, which\nshould be checked before used.\n\nThis fixes 2 OVERRUN issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46730",
"url": "https://www.suse.com/security/cve/CVE-2024-46730"
},
{
"category": "external",
"summary": "SUSE Bug 1230701 for CVE-2024-46730",
"url": "https://bugzilla.suse.com/1230701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46730"
},
{
"cve": "CVE-2024-46731",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46731"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: fix the Out-of-bounds read warning\n\nusing index i - 1U may beyond element index\nfor mc_data[] when i = 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46731",
"url": "https://www.suse.com/security/cve/CVE-2024-46731"
},
{
"category": "external",
"summary": "SUSE Bug 1230709 for CVE-2024-46731",
"url": "https://bugzilla.suse.com/1230709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46731"
},
{
"cve": "CVE-2024-46732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Assign linear_pitch_alignment even for VM\n\n[Description]\nAssign linear_pitch_alignment so we don\u0027t cause a divide by 0\nerror in VM environments",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46732",
"url": "https://www.suse.com/security/cve/CVE-2024-46732"
},
{
"category": "external",
"summary": "SUSE Bug 1230711 for CVE-2024-46732",
"url": "https://bugzilla.suse.com/1230711"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46732"
},
{
"cve": "CVE-2024-46734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between direct IO write and fsync when using same fd\n\nIf we have 2 threads that are using the same file descriptor and one of\nthem is doing direct IO writes while the other is doing fsync, we have a\nrace where we can end up either:\n\n1) Attempt a fsync without holding the inode\u0027s lock, triggering an\n assertion failures when assertions are enabled;\n\n2) Do an invalid memory access from the fsync task because the file private\n points to memory allocated on stack by the direct IO task and it may be\n used by the fsync task after the stack was destroyed.\n\nThe race happens like this:\n\n1) A user space program opens a file descriptor with O_DIRECT;\n\n2) The program spawns 2 threads using libpthread for example;\n\n3) One of the threads uses the file descriptor to do direct IO writes,\n while the other calls fsync using the same file descriptor.\n\n4) Call task A the thread doing direct IO writes and task B the thread\n doing fsyncs;\n\n5) Task A does a direct IO write, and at btrfs_direct_write() sets the\n file\u0027s private to an on stack allocated private with the member\n \u0027fsync_skip_inode_lock\u0027 set to true;\n\n6) Task B enters btrfs_sync_file() and sees that there\u0027s a private\n structure associated to the file which has \u0027fsync_skip_inode_lock\u0027 set\n to true, so it skips locking the inode\u0027s VFS lock;\n\n7) Task A completes the direct IO write, and resets the file\u0027s private to\n NULL since it had no prior private and our private was stack allocated.\n Then it unlocks the inode\u0027s VFS lock;\n\n8) Task B enters btrfs_get_ordered_extents_for_logging(), then the\n assertion that checks the inode\u0027s VFS lock is held fails, since task B\n never locked it and task A has already unlocked it.\n\nThe stack trace produced is the following:\n\n assertion failed: inode_is_locked(\u0026inode-\u003evfs_inode), in fs/btrfs/ordered-data.c:983\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/ordered-data.c:983!\n Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI\n CPU: 9 PID: 5072 Comm: worker Tainted: G U OE 6.10.5-1-default #1 openSUSE Tumbleweed 69f48d427608e1c09e60ea24c6c55e2ca1b049e8\n Hardware name: Acer Predator PH315-52/Covini_CFS, BIOS V1.12 07/28/2020\n RIP: 0010:btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs]\n Code: 50 d6 86 c0 e8 (...)\n RSP: 0018:ffff9e4a03dcfc78 EFLAGS: 00010246\n RAX: 0000000000000054 RBX: ffff9078a9868e98 RCX: 0000000000000000\n RDX: 0000000000000000 RSI: ffff907dce4a7800 RDI: ffff907dce4a7800\n RBP: ffff907805518800 R08: 0000000000000000 R09: ffff9e4a03dcfb38\n R10: ffff9e4a03dcfb30 R11: 0000000000000003 R12: ffff907684ae7800\n R13: 0000000000000001 R14: ffff90774646b600 R15: 0000000000000000\n FS: 00007f04b96006c0(0000) GS:ffff907dce480000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f32acbfc000 CR3: 00000001fd4fa005 CR4: 00000000003726f0\n Call Trace:\n \u003cTASK\u003e\n ? __die_body.cold+0x14/0x24\n ? die+0x2e/0x50\n ? do_trap+0xca/0x110\n ? do_error_trap+0x6a/0x90\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? exc_invalid_op+0x50/0x70\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? asm_exc_invalid_op+0x1a/0x20\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? btrfs_get_ordered_extents_for_logging.cold+0x1f/0x42 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n btrfs_sync_file+0x21a/0x4d0 [btrfs bb26272d49b4cdc847cf3f7faadd459b62caee9a]\n ? __seccomp_filter+0x31d/0x4f0\n __x64_sys_fdatasync+0x4f/0x90\n do_syscall_64+0x82/0x160\n ? do_futex+0xcb/0x190\n ? __x64_sys_futex+0x10e/0x1d0\n ? switch_fpu_return+0x4f/0xd0\n ? syscall_exit_to_user_mode+0x72/0x220\n ? do_syscall_64+0x8e/0x160\n ? syscall_exit_to_user_mod\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46734",
"url": "https://www.suse.com/security/cve/CVE-2024-46734"
},
{
"category": "external",
"summary": "SUSE Bug 1230726 for CVE-2024-46734",
"url": "https://bugzilla.suse.com/1230726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46734"
},
{
"cve": "CVE-2024-46735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery()\n\nWhen two UBLK_CMD_START_USER_RECOVERY commands are submitted, the\nfirst one sets \u0027ubq-\u003eubq_daemon\u0027 to NULL, and the second one triggers\nWARN in ublk_queue_reinit() and subsequently a NULL pointer dereference\nissue.\n\nFix it by adding the check in ublk_ctrl_start_recovery() and return\nimmediately in case of zero \u0027ub-\u003enr_queues_ready\u0027.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000028\n RIP: 0010:ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x75/0x170\n ? exc_page_fault+0x64/0x140\n ? asm_exc_page_fault+0x22/0x30\n ? ublk_ctrl_start_recovery.constprop.0+0x82/0x180\n ublk_ctrl_uring_cmd+0x4f7/0x6c0\n ? pick_next_task_idle+0x26/0x40\n io_uring_cmd+0x9a/0x1b0\n io_issue_sqe+0x193/0x3f0\n io_wq_submit_work+0x9b/0x390\n io_worker_handle_work+0x165/0x360\n io_wq_worker+0xcb/0x2f0\n ? finish_task_switch.isra.0+0x203/0x290\n ? finish_task_switch.isra.0+0x203/0x290\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork+0x2d/0x50\n ? __pfx_io_wq_worker+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46735",
"url": "https://www.suse.com/security/cve/CVE-2024-46735"
},
{
"category": "external",
"summary": "SUSE Bug 1230727 for CVE-2024-46735",
"url": "https://bugzilla.suse.com/1230727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46735"
},
{
"cve": "CVE-2024-46737",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46737"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fix kernel crash if commands allocation fails\n\nIf the commands allocation fails in nvmet_tcp_alloc_cmds()\nthe kernel crashes in nvmet_tcp_release_queue_work() because of\na NULL pointer dereference.\n\n nvmet: failed to install queue 0 cntlid 1 ret 6\n Unable to handle kernel NULL pointer dereference at\n virtual address 0000000000000008\n\nFix the bug by setting queue-\u003enr_cmds to zero in case\nnvmet_tcp_alloc_cmd() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46737",
"url": "https://www.suse.com/security/cve/CVE-2024-46737"
},
{
"category": "external",
"summary": "SUSE Bug 1230730 for CVE-2024-46737",
"url": "https://bugzilla.suse.com/1230730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46737"
},
{
"cve": "CVE-2024-46738",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46738"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nVMCI: Fix use-after-free when removing resource in vmci_resource_remove()\n\nWhen removing a resource from vmci_resource_table in\nvmci_resource_remove(), the search is performed using the resource\nhandle by comparing context and resource fields.\n\nIt is possible though to create two resources with different types\nbut same handle (same context and resource fields).\n\nWhen trying to remove one of the resources, vmci_resource_remove()\nmay not remove the intended one, but the object will still be freed\nas in the case of the datagram type in vmci_datagram_destroy_handle().\nvmci_resource_table will still hold a pointer to this freed resource\nleading to a use-after-free vulnerability.\n\nBUG: KASAN: use-after-free in vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\nBUG: KASAN: use-after-free in vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\nRead of size 4 at addr ffff88801c16d800 by task syz-executor197/1592\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x82/0xa9 lib/dump_stack.c:106\n print_address_description.constprop.0+0x21/0x366 mm/kasan/report.c:239\n __kasan_report.cold+0x7f/0x132 mm/kasan/report.c:425\n kasan_report+0x38/0x51 mm/kasan/report.c:442\n vmci_handle_is_equal include/linux/vmw_vmci_defs.h:142 [inline]\n vmci_resource_remove+0x3a1/0x410 drivers/misc/vmw_vmci/vmci_resource.c:147\n vmci_qp_broker_detach+0x89a/0x11b9 drivers/misc/vmw_vmci/vmci_queue_pair.c:2182\n ctx_free_ctx+0x473/0xbe1 drivers/misc/vmw_vmci/vmci_context.c:444\n kref_put include/linux/kref.h:65 [inline]\n vmci_ctx_put drivers/misc/vmw_vmci/vmci_context.c:497 [inline]\n vmci_ctx_destroy+0x170/0x1d6 drivers/misc/vmw_vmci/vmci_context.c:195\n vmci_host_close+0x125/0x1ac drivers/misc/vmw_vmci/vmci_host.c:143\n __fput+0x261/0xa34 fs/file_table.c:282\n task_work_run+0xf0/0x194 kernel/task_work.c:164\n tracehook_notify_resume include/linux/tracehook.h:189 [inline]\n exit_to_user_mode_loop+0x184/0x189 kernel/entry/common.c:187\n exit_to_user_mode_prepare+0x11b/0x123 kernel/entry/common.c:220\n __syscall_exit_to_user_mode_work kernel/entry/common.c:302 [inline]\n syscall_exit_to_user_mode+0x18/0x42 kernel/entry/common.c:313\n do_syscall_64+0x41/0x85 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\n\nThis change ensures the type is also checked when removing\nthe resource from vmci_resource_table in vmci_resource_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46738",
"url": "https://www.suse.com/security/cve/CVE-2024-46738"
},
{
"category": "external",
"summary": "SUSE Bug 1230731 for CVE-2024-46738",
"url": "https://bugzilla.suse.com/1230731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46738"
},
{
"cve": "CVE-2024-46739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46739"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind\n\nFor primary VM Bus channels, primary_channel pointer is always NULL. This\npointer is valid only for the secondary channels. Also, rescind callback\nis meant for primary channels only.\n\nFix NULL pointer dereference by retrieving the device_obj from the parent\nfor the primary channel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46739",
"url": "https://www.suse.com/security/cve/CVE-2024-46739"
},
{
"category": "external",
"summary": "SUSE Bug 1230732 for CVE-2024-46739",
"url": "https://bugzilla.suse.com/1230732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46739"
},
{
"cve": "CVE-2024-46741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix double free of \u0027buf\u0027 in error path\n\nsmatch warning:\ndrivers/misc/fastrpc.c:1926 fastrpc_req_mmap() error: double free of \u0027buf\u0027\n\nIn fastrpc_req_mmap() error path, the fastrpc buffer is freed in\nfastrpc_req_munmap_impl() if unmap is successful.\n\nBut in the end, there is an unconditional call to fastrpc_buf_free().\nSo the above case triggers the double free of fastrpc buf.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46741",
"url": "https://www.suse.com/security/cve/CVE-2024-46741"
},
{
"category": "external",
"summary": "SUSE Bug 1230749 for CVE-2024-46741",
"url": "https://bugzilla.suse.com/1230749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46741"
},
{
"cve": "CVE-2024-46743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof/irq: Prevent device address out-of-bounds read in interrupt map walk\n\nWhen of_irq_parse_raw() is invoked with a device address smaller than\nthe interrupt parent node (from #address-cells property), KASAN detects\nthe following out-of-bounds read when populating the initial match table\n(dyndbg=\"func of_irq_parse_* +p\"):\n\n OF: of_irq_parse_one: dev=/soc@0/picasso/watchdog, index=0\n OF: parent=/soc@0/pci@878000000000/gpio0@17,0, intsize=2\n OF: intspec=4\n OF: of_irq_parse_raw: ipar=/soc@0/pci@878000000000/gpio0@17,0, size=2\n OF: -\u003e addrsize=3\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in of_irq_parse_raw+0x2b8/0x8d0\n Read of size 4 at addr ffffff81beca5608 by task bash/764\n\n CPU: 1 PID: 764 Comm: bash Tainted: G O 6.1.67-484c613561-nokia_sm_arm64 #1\n Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.01-12.24.03-dirty 01/01/2023\n Call trace:\n dump_backtrace+0xdc/0x130\n show_stack+0x1c/0x30\n dump_stack_lvl+0x6c/0x84\n print_report+0x150/0x448\n kasan_report+0x98/0x140\n __asan_load4+0x78/0xa0\n of_irq_parse_raw+0x2b8/0x8d0\n of_irq_parse_one+0x24c/0x270\n parse_interrupts+0xc0/0x120\n of_fwnode_add_links+0x100/0x2d0\n fw_devlink_parse_fwtree+0x64/0xc0\n device_add+0xb38/0xc30\n of_device_add+0x64/0x90\n of_platform_device_create_pdata+0xd0/0x170\n of_platform_bus_create+0x244/0x600\n of_platform_notify+0x1b0/0x254\n blocking_notifier_call_chain+0x9c/0xd0\n __of_changeset_entry_notify+0x1b8/0x230\n __of_changeset_apply_notify+0x54/0xe4\n of_overlay_fdt_apply+0xc04/0xd94\n ...\n\n The buggy address belongs to the object at ffffff81beca5600\n which belongs to the cache kmalloc-128 of size 128\n The buggy address is located 8 bytes inside of\n 128-byte region [ffffff81beca5600, ffffff81beca5680)\n\n The buggy address belongs to the physical page:\n page:00000000230d3d03 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1beca4\n head:00000000230d3d03 order:1 compound_mapcount:0 compound_pincount:0\n flags: 0x8000000000010200(slab|head|zone=2)\n raw: 8000000000010200 0000000000000000 dead000000000122 ffffff810000c300\n raw: 0000000000000000 0000000000200020 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffffff81beca5500: 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n \u003effffff81beca5600: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ^\n ffffff81beca5680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffffff81beca5700: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc\n ==================================================================\n OF: -\u003e got it !\n\nPrevent the out-of-bounds read by copying the device address into a\nbuffer of sufficient size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46743",
"url": "https://www.suse.com/security/cve/CVE-2024-46743"
},
{
"category": "external",
"summary": "SUSE Bug 1230756 for CVE-2024-46743",
"url": "https://bugzilla.suse.com/1230756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46743"
},
{
"cve": "CVE-2024-46744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: sanity check symbolic link size\n\nSyzkiller reports a \"KMSAN: uninit-value in pick_link\" bug.\n\nThis is caused by an uninitialised page, which is ultimately caused\nby a corrupted symbolic link size read from disk.\n\nThe reason why the corrupted symlink size causes an uninitialised\npage is due to the following sequence of events:\n\n1. squashfs_read_inode() is called to read the symbolic\n link from disk. This assigns the corrupted value\n 3875536935 to inode-\u003ei_size.\n\n2. Later squashfs_symlink_read_folio() is called, which assigns\n this corrupted value to the length variable, which being a\n signed int, overflows producing a negative number.\n\n3. The following loop that fills in the page contents checks that\n the copied bytes is less than length, which being negative means\n the loop is skipped, producing an uninitialised page.\n\nThis patch adds a sanity check which checks that the symbolic\nlink size is not larger than expected.\n\n--\n\nV2: fix spelling mistake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46744",
"url": "https://www.suse.com/security/cve/CVE-2024-46744"
},
{
"category": "external",
"summary": "SUSE Bug 1230747 for CVE-2024-46744",
"url": "https://bugzilla.suse.com/1230747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46744"
},
{
"cve": "CVE-2024-46745",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46745"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: uinput - reject requests with unreasonable number of slots\n\n\nWhen exercising uinput interface syzkaller may try setting up device\nwith a really large number of slots, which causes memory allocation\nfailure in input_mt_init_slots(). While this allocation failure is\nhandled properly and request is rejected, it results in syzkaller\nreports. Additionally, such request may put undue burden on the\nsystem which will try to free a lot of memory for a bogus request.\n\nFix it by limiting allowed number of slots to 100. This can easily\nbe extended if we see devices that can track more than 100 contacts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46745",
"url": "https://www.suse.com/security/cve/CVE-2024-46745"
},
{
"category": "external",
"summary": "SUSE Bug 1230748 for CVE-2024-46745",
"url": "https://bugzilla.suse.com/1230748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46745"
},
{
"cve": "CVE-2024-46746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: amd_sfh: free driver_data after destroying hid device\n\nHID driver callbacks aren\u0027t called anymore once hid_destroy_device() has\nbeen called. Hence, hid driver_data should be freed only after the\nhid_destroy_device() function returned as driver_data is used in several\ncallbacks.\n\nI observed a crash with kernel 6.10.0 on my T14s Gen 3, after enabling\nKASAN to debug memory allocation, I got this output:\n\n [ 13.050438] ==================================================================\n [ 13.054060] BUG: KASAN: slab-use-after-free in amd_sfh_get_report+0x3ec/0x530 [amd_sfh]\n [ 13.054809] psmouse serio1: trackpoint: Synaptics TrackPoint firmware: 0x02, buttons: 3/3\n [ 13.056432] Read of size 8 at addr ffff88813152f408 by task (udev-worker)/479\n\n [ 13.060970] CPU: 5 PID: 479 Comm: (udev-worker) Not tainted 6.10.0-arch1-2 #1 893bb55d7f0073f25c46adbb49eb3785fefd74b0\n [ 13.063978] Hardware name: LENOVO 21CQCTO1WW/21CQCTO1WW, BIOS R22ET70W (1.40 ) 03/21/2024\n [ 13.067860] Call Trace:\n [ 13.069383] input: TPPS/2 Synaptics TrackPoint as /devices/platform/i8042/serio1/input/input8\n [ 13.071486] \u003cTASK\u003e\n [ 13.071492] dump_stack_lvl+0x5d/0x80\n [ 13.074870] snd_hda_intel 0000:33:00.6: enabling device (0000 -\u003e 0002)\n [ 13.078296] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.082199] print_report+0x174/0x505\n [ 13.085776] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.089367] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.093255] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.097464] kasan_report+0xc8/0x150\n [ 13.101461] ? amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.105802] amd_sfh_get_report+0x3ec/0x530 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.110303] amdtp_hid_request+0xb8/0x110 [amd_sfh 05f43221435b5205f734cd9da29399130f398a38]\n [ 13.114879] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.119450] sensor_hub_get_feature+0x1d3/0x540 [hid_sensor_hub 3f13be3016ff415bea03008d45d99da837ee3082]\n [ 13.124097] hid_sensor_parse_common_attributes+0x4d0/0xad0 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.127404] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.131925] ? __pfx_hid_sensor_parse_common_attributes+0x10/0x10 [hid_sensor_iio_common c3a5cbe93969c28b122609768bbe23efe52eb8f5]\n [ 13.136455] ? _raw_spin_lock_irqsave+0x96/0xf0\n [ 13.140197] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n [ 13.143602] ? devm_iio_device_alloc+0x34/0x50 [industrialio 3d261d5e5765625d2b052be40e526d62b1d2123b]\n [ 13.147234] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.150446] ? __devm_add_action+0x167/0x1d0\n [ 13.155061] hid_gyro_3d_probe+0x120/0x7f0 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.158581] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.161814] platform_probe+0xa2/0x150\n [ 13.165029] really_probe+0x1e3/0x8a0\n [ 13.168243] __driver_probe_device+0x18c/0x370\n [ 13.171500] driver_probe_device+0x4a/0x120\n [ 13.175000] __driver_attach+0x190/0x4a0\n [ 13.178521] ? __pfx___driver_attach+0x10/0x10\n [ 13.181771] bus_for_each_dev+0x106/0x180\n [ 13.185033] ? __pfx__raw_spin_lock+0x10/0x10\n [ 13.188229] ? __pfx_bus_for_each_dev+0x10/0x10\n [ 13.191446] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.194382] bus_add_driver+0x29e/0x4d0\n [ 13.197328] driver_register+0x1a5/0x360\n [ 13.200283] ? __pfx_hid_gyro_3d_platform_driver_init+0x10/0x10 [hid_sensor_gyro_3d 63da36a143b775846ab2dbb86c343b401b5e3172]\n [ 13.203362] do_one_initcall+0xa7/0x380\n [ 13.206432] ? __pfx_do_one_initcall+0x10/0x10\n [ 13.210175] ? srso_alias_return_thunk+0x5/0xfbef5\n [ 13.213211] ? kasan_unpoison+0x44/0x70\n [ 13.216688] do_init_module+0x238/0x750\n [ 13.2196\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46746",
"url": "https://www.suse.com/security/cve/CVE-2024-46746"
},
{
"category": "external",
"summary": "SUSE Bug 1230751 for CVE-2024-46746",
"url": "https://bugzilla.suse.com/1230751"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46746"
},
{
"cve": "CVE-2024-46747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup\n\nreport_fixup for the Cougar 500k Gaming Keyboard was not verifying\nthat the report descriptor size was correct before accessing it",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46747",
"url": "https://www.suse.com/security/cve/CVE-2024-46747"
},
{
"category": "external",
"summary": "SUSE Bug 1230752 for CVE-2024-46747",
"url": "https://bugzilla.suse.com/1230752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46747"
},
{
"cve": "CVE-2024-46749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush()\n\nThis adds a check before freeing the rx-\u003eskb in flush and close\nfunctions to handle the kernel crash seen while removing driver after FW\ndownload fails or before FW download completes.\n\ndmesg log:\n[ 54.634586] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000080\n[ 54.643398] Mem abort info:\n[ 54.646204] ESR = 0x0000000096000004\n[ 54.649964] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 54.655286] SET = 0, FnV = 0\n[ 54.658348] EA = 0, S1PTW = 0\n[ 54.661498] FSC = 0x04: level 0 translation fault\n[ 54.666391] Data abort info:\n[ 54.669273] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[ 54.674768] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 54.674771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 54.674775] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000048860000\n[ 54.674780] [0000000000000080] pgd=0000000000000000, p4d=0000000000000000\n[ 54.703880] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[ 54.710152] Modules linked in: btnxpuart(-) overlay fsl_jr_uio caam_jr caamkeyblob_desc caamhash_desc caamalg_desc crypto_engine authenc libdes crct10dif_ce polyval_ce polyval_generic snd_soc_imx_spdif snd_soc_imx_card snd_soc_ak5558 snd_soc_ak4458 caam secvio error snd_soc_fsl_micfil snd_soc_fsl_spdif snd_soc_fsl_sai snd_soc_fsl_utils imx_pcm_dma gpio_ir_recv rc_core sch_fq_codel fuse\n[ 54.744357] CPU: 3 PID: 72 Comm: kworker/u9:0 Not tainted 6.6.3-otbr-g128004619037 #2\n[ 54.744364] Hardware name: FSL i.MX8MM EVK board (DT)\n[ 54.744368] Workqueue: hci0 hci_power_on\n[ 54.757244] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 54.757249] pc : kfree_skb_reason+0x18/0xb0\n[ 54.772299] lr : btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.782921] sp : ffff8000805ebca0\n[ 54.782923] x29: ffff8000805ebca0 x28: ffffa5c6cf1869c0 x27: ffffa5c6cf186000\n[ 54.782931] x26: ffff377b84852400 x25: ffff377b848523c0 x24: ffff377b845e7230\n[ 54.782938] x23: ffffa5c6ce8dbe08 x22: ffffa5c6ceb65410 x21: 00000000ffffff92\n[ 54.782945] x20: ffffa5c6ce8dbe98 x19: ffffffffffffffac x18: ffffffffffffffff\n[ 54.807651] x17: 0000000000000000 x16: ffffa5c6ce2824ec x15: ffff8001005eb857\n[ 54.821917] x14: 0000000000000000 x13: ffffa5c6cf1a02e0 x12: 0000000000000642\n[ 54.821924] x11: 0000000000000040 x10: ffffa5c6cf19d690 x9 : ffffa5c6cf19d688\n[ 54.821931] x8 : ffff377b86000028 x7 : 0000000000000000 x6 : 0000000000000000\n[ 54.821938] x5 : ffff377b86000000 x4 : 0000000000000000 x3 : 0000000000000000\n[ 54.843331] x2 : 0000000000000000 x1 : 0000000000000002 x0 : ffffffffffffffac\n[ 54.857599] Call trace:\n[ 54.857601] kfree_skb_reason+0x18/0xb0\n[ 54.863878] btnxpuart_flush+0x40/0x58 [btnxpuart]\n[ 54.863888] hci_dev_open_sync+0x3a8/0xa04\n[ 54.872773] hci_power_on+0x54/0x2e4\n[ 54.881832] process_one_work+0x138/0x260\n[ 54.881842] worker_thread+0x32c/0x438\n[ 54.881847] kthread+0x118/0x11c\n[ 54.881853] ret_from_fork+0x10/0x20\n[ 54.896406] Code: a9be7bfd 910003fd f9000bf3 aa0003f3 (b940d400)\n[ 54.896410] ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46749",
"url": "https://www.suse.com/security/cve/CVE-2024-46749"
},
{
"category": "external",
"summary": "SUSE Bug 1230780 for CVE-2024-46749",
"url": "https://bugzilla.suse.com/1230780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46749"
},
{
"cve": "CVE-2024-46750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Add missing bridge lock to pci_bus_lock()\n\nOne of the true positives that the cfg_access_lock lockdep effort\nidentified is this sequence:\n\n WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pci_bridge_secondary_bus_reset+0x5d/0x70\n RIP: 0010:pci_bridge_secondary_bus_reset+0x5d/0x70\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x8c/0x190\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n ? report_bug+0x1f8/0x200\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x18/0x70\n ? asm_exc_invalid_op+0x1a/0x20\n ? pci_bridge_secondary_bus_reset+0x5d/0x70\n pci_reset_bus+0x1d8/0x270\n vmd_probe+0x778/0xa10\n pci_device_probe+0x95/0x120\n\nWhere pci_reset_bus() users are triggering unlocked secondary bus resets.\nIronically pci_bus_reset(), several calls down from pci_reset_bus(), uses\npci_bus_lock() before issuing the reset which locks everything *but* the\nbridge itself.\n\nFor the same motivation as adding:\n\n bridge = pci_upstream_bridge(dev);\n if (bridge)\n pci_dev_lock(bridge);\n\nto pci_reset_function() for the \"bus\" and \"cxl_bus\" reset cases, add\npci_dev_lock() for @bus-\u003eself to pci_bus_lock().\n\n[bhelgaas: squash in recursive locking deadlock fix from Keith Busch:\nhttps://lore.kernel.org/r/20240711193650.701834-1-kbusch@meta.com]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46750",
"url": "https://www.suse.com/security/cve/CVE-2024-46750"
},
{
"category": "external",
"summary": "SUSE Bug 1230783 for CVE-2024-46750",
"url": "https://bugzilla.suse.com/1230783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46750"
},
{
"cve": "CVE-2024-46751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON() when 0 reference count at btrfs_lookup_extent_info()\n\nInstead of doing a BUG_ON() handle the error by returning -EUCLEAN,\naborting the transaction and logging an error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46751",
"url": "https://www.suse.com/security/cve/CVE-2024-46751"
},
{
"category": "external",
"summary": "SUSE Bug 1230786 for CVE-2024-46751",
"url": "https://bugzilla.suse.com/1230786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46751"
},
{
"cve": "CVE-2024-46752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: replace BUG_ON() with error handling at update_ref_for_cow()\n\nInstead of a BUG_ON() just return an error, log an error message and\nabort the transaction in case we find an extent buffer belonging to the\nrelocation tree that doesn\u0027t have the full backref flag set. This is\nunexpected and should never happen (save for bugs or a potential bad\nmemory).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46752",
"url": "https://www.suse.com/security/cve/CVE-2024-46752"
},
{
"category": "external",
"summary": "SUSE Bug 1230794 for CVE-2024-46752",
"url": "https://bugzilla.suse.com/1230794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46752"
},
{
"cve": "CVE-2024-46753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: handle errors from btrfs_dec_ref() properly\n\nIn walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is\nincorrect, we have proper error handling here, return the error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46753",
"url": "https://www.suse.com/security/cve/CVE-2024-46753"
},
{
"category": "external",
"summary": "SUSE Bug 1230796 for CVE-2024-46753",
"url": "https://bugzilla.suse.com/1230796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46753"
},
{
"cve": "CVE-2024-46755",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46755"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()\n\nmwifiex_get_priv_by_id() returns the priv pointer corresponding to\nthe bss_num and bss_type, but without checking if the priv is actually\ncurrently in use.\nUnused priv pointers do not have a wiphy attached to them which can\nlead to NULL pointer dereferences further down the callstack. Fix\nthis by returning only used priv pointers which have priv-\u003ebss_mode\nset to something else than NL80211_IFTYPE_UNSPECIFIED.\n\nSaid NULL pointer dereference happened when an Accesspoint was started\nwith wpa_supplicant -i mlan0 with this config:\n\nnetwork={\n ssid=\"somessid\"\n mode=2\n frequency=2412\n key_mgmt=WPA-PSK WPA-PSK-SHA256\n proto=RSN\n group=CCMP\n pairwise=CCMP\n psk=\"12345678\"\n}\n\nWhen waiting for the AP to be established, interrupting wpa_supplicant\nwith \u003cctrl-c\u003e and starting it again this happens:\n\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000140\n| Mem abort info:\n| ESR = 0x0000000096000004\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x04: level 0 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n| CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 48-bit VAs, pgdp=0000000046d96000\n| [0000000000000140] pgd=0000000000000000, p4d=0000000000000000\n| Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n| Modules linked in: caam_jr caamhash_desc spidev caamalg_desc crypto_engine authenc libdes mwifiex_sdio\n+mwifiex crct10dif_ce cdc_acm onboard_usb_hub fsl_imx8_ddr_perf imx8m_ddrc rtc_ds1307 lm75 rtc_snvs\n+imx_sdma caam imx8mm_thermal spi_imx error imx_cpufreq_dt fuse ip_tables x_tables ipv6\n| CPU: 0 PID: 8 Comm: kworker/0:1 Not tainted 6.9.0-00007-g937242013fce-dirty #18\n| Hardware name: somemachine (DT)\n| Workqueue: events sdio_irq_work\n| pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n| pc : mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| lr : mwifiex_get_cfp+0x34/0x15c [mwifiex]\n| sp : ffff8000818b3a70\n| x29: ffff8000818b3a70 x28: ffff000006bfd8a5 x27: 0000000000000004\n| x26: 000000000000002c x25: 0000000000001511 x24: 0000000002e86bc9\n| x23: ffff000006bfd996 x22: 0000000000000004 x21: ffff000007bec000\n| x20: 000000000000002c x19: 0000000000000000 x18: 0000000000000000\n| x17: 000000040044ffff x16: 00500072b5503510 x15: ccc283740681e517\n| x14: 0201000101006d15 x13: 0000000002e8ff43 x12: 002c01000000ffb1\n| x11: 0100000000000000 x10: 02e8ff43002c0100 x9 : 0000ffb100100157\n| x8 : ffff000003d20000 x7 : 00000000000002f1 x6 : 00000000ffffe124\n| x5 : 0000000000000001 x4 : 0000000000000003 x3 : 0000000000000000\n| x2 : 0000000000000000 x1 : 0001000000011001 x0 : 0000000000000000\n| Call trace:\n| mwifiex_get_cfp+0xd8/0x15c [mwifiex]\n| mwifiex_parse_single_response_buf+0x1d0/0x504 [mwifiex]\n| mwifiex_handle_event_ext_scan_report+0x19c/0x2f8 [mwifiex]\n| mwifiex_process_sta_event+0x298/0xf0c [mwifiex]\n| mwifiex_process_event+0x110/0x238 [mwifiex]\n| mwifiex_main_process+0x428/0xa44 [mwifiex]\n| mwifiex_sdio_interrupt+0x64/0x12c [mwifiex_sdio]\n| process_sdio_pending_irqs+0x64/0x1b8\n| sdio_irq_work+0x4c/0x7c\n| process_one_work+0x148/0x2a0\n| worker_thread+0x2fc/0x40c\n| kthread+0x110/0x114\n| ret_from_fork+0x10/0x20\n| Code: a94153f3 a8c37bfd d50323bf d65f03c0 (f940a000)\n| ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46755",
"url": "https://www.suse.com/security/cve/CVE-2024-46755"
},
{
"category": "external",
"summary": "SUSE Bug 1230802 for CVE-2024-46755",
"url": "https://bugzilla.suse.com/1230802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46755"
},
{
"cve": "CVE-2024-46756",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46756"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46756",
"url": "https://www.suse.com/security/cve/CVE-2024-46756"
},
{
"category": "external",
"summary": "SUSE Bug 1230806 for CVE-2024-46756",
"url": "https://bugzilla.suse.com/1230806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46756"
},
{
"cve": "CVE-2024-46757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46757"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46757",
"url": "https://www.suse.com/security/cve/CVE-2024-46757"
},
{
"category": "external",
"summary": "SUSE Bug 1230809 for CVE-2024-46757",
"url": "https://bugzilla.suse.com/1230809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46757"
},
{
"cve": "CVE-2024-46758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46758"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46758",
"url": "https://www.suse.com/security/cve/CVE-2024-46758"
},
{
"category": "external",
"summary": "SUSE Bug 1230812 for CVE-2024-46758",
"url": "https://bugzilla.suse.com/1230812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46758"
},
{
"cve": "CVE-2024-46759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (adc128d818) Fix underflows seen when writing limit attributes\n\nDIV_ROUND_CLOSEST() after kstrtol() results in an underflow if a large\nnegative number such as -9223372036854775808 is provided by the user.\nFix it by reordering clamp_val() and DIV_ROUND_CLOSEST() operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46759",
"url": "https://www.suse.com/security/cve/CVE-2024-46759"
},
{
"category": "external",
"summary": "SUSE Bug 1230814 for CVE-2024-46759",
"url": "https://bugzilla.suse.com/1230814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46759"
},
{
"cve": "CVE-2024-46760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46760"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: usb: schedule rx work after everything is set up\n\nRight now it\u0027s possible to hit NULL pointer dereference in\nrtw_rx_fill_rx_status on hw object and/or its fields because\ninitialization routine can start getting USB replies before\nrtw_dev is fully setup.\n\nThe stack trace looks like this:\n\nrtw_rx_fill_rx_status\nrtw8821c_query_rx_desc\nrtw_usb_rx_handler\n...\nqueue_work\nrtw_usb_read_port_complete\n...\nusb_submit_urb\nrtw_usb_rx_resubmit\nrtw_usb_init_rx\nrtw_usb_probe\n\nSo while we do the async stuff rtw_usb_probe continues and calls\nrtw_register_hw, which does all kinds of initialization (e.g.\nvia ieee80211_register_hw) that rtw_rx_fill_rx_status relies on.\n\nFix this by moving the first usb_submit_urb after everything\nis set up.\n\nFor me, this bug manifested as:\n[ 8.893177] rtw_8821cu 1-1:1.2: band wrong, packet dropped\n[ 8.910904] rtw_8821cu 1-1:1.2: hw-\u003econf.chandef.chan NULL in rtw_rx_fill_rx_status\nbecause I\u0027m using Larry\u0027s backport of rtw88 driver with the NULL\nchecks in rtw_rx_fill_rx_status.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46760",
"url": "https://www.suse.com/security/cve/CVE-2024-46760"
},
{
"category": "external",
"summary": "SUSE Bug 1230753 for CVE-2024-46760",
"url": "https://bugzilla.suse.com/1230753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46760"
},
{
"cve": "CVE-2024-46761",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46761"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npci/hotplug/pnv_php: Fix hotplug driver crash on Powernv\n\nThe hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel\ncrash when we try to hot-unplug/disable the PCIe switch/bridge from\nthe PHB.\n\nThe crash occurs because although the MSI data structure has been\nreleased during disable/hot-unplug path and it has been assigned\nwith NULL, still during unregistration the code was again trying to\nexplicitly disable the MSI which causes the NULL pointer dereference and\nkernel crash.\n\nThe patch fixes the check during unregistration path to prevent invoking\npci_disable_msi/msix() since its data structure is already freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46761",
"url": "https://www.suse.com/security/cve/CVE-2024-46761"
},
{
"category": "external",
"summary": "SUSE Bug 1230761 for CVE-2024-46761",
"url": "https://bugzilla.suse.com/1230761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46761"
},
{
"cve": "CVE-2024-46767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46767"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Fix missing of_node_put() for leds\n\nThe call of of_get_child_by_name() will cause refcount incremented\nfor leds, if it succeeds, it should call of_node_put() to decrease\nit, fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46767",
"url": "https://www.suse.com/security/cve/CVE-2024-46767"
},
{
"category": "external",
"summary": "SUSE Bug 1230787 for CVE-2024-46767",
"url": "https://bugzilla.suse.com/1230787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46767"
},
{
"cve": "CVE-2024-46771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: bcm: Remove proc entry when dev is unregistered.\n\nsyzkaller reported a warning in bcm_connect() below. [0]\n\nThe repro calls connect() to vxcan1, removes vxcan1, and calls\nconnect() with ifindex == 0.\n\nCalling connect() for a BCM socket allocates a proc entry.\nThen, bcm_sk(sk)-\u003ebound is set to 1 to prevent further connect().\n\nHowever, removing the bound device resets bcm_sk(sk)-\u003ebound to 0\nin bcm_notify().\n\nThe 2nd connect() tries to allocate a proc entry with the same\nname and sets NULL to bcm_sk(sk)-\u003ebcm_proc_read, leaking the\noriginal proc entry.\n\nSince the proc entry is available only for connect()ed sockets,\nlet\u0027s clean up the entry when the bound netdev is unregistered.\n\n[0]:\nproc_dir_entry \u0027can-bcm/2456\u0027 already registered\nWARNING: CPU: 1 PID: 394 at fs/proc/generic.c:376 proc_register+0x645/0x8f0 fs/proc/generic.c:375\nModules linked in:\nCPU: 1 PID: 394 Comm: syz-executor403 Not tainted 6.10.0-rc7-g852e42cc2dd4\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:proc_register+0x645/0x8f0 fs/proc/generic.c:375\nCode: 00 00 00 00 00 48 85 ed 0f 85 97 02 00 00 4d 85 f6 0f 85 9f 02 00 00 48 c7 c7 9b cb cf 87 48 89 de 4c 89 fa e8 1c 6f eb fe 90 \u003c0f\u003e 0b 90 90 48 c7 c7 98 37 99 89 e8 cb 7e 22 05 bb 00 00 00 10 48\nRSP: 0018:ffa0000000cd7c30 EFLAGS: 00010246\nRAX: 9e129be1950f0200 RBX: ff1100011b51582c RCX: ff1100011857cd80\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002\nRBP: 0000000000000000 R08: ffd400000000000f R09: ff1100013e78cac0\nR10: ffac800000cd7980 R11: ff1100013e12b1f0 R12: 0000000000000000\nR13: 0000000000000000 R14: 0000000000000000 R15: ff1100011a99a2ec\nFS: 00007fbd7086f740(0000) GS:ff1100013fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200071c0 CR3: 0000000118556004 CR4: 0000000000771ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n proc_create_net_single+0x144/0x210 fs/proc/proc_net.c:220\n bcm_connect+0x472/0x840 net/can/bcm.c:1673\n __sys_connect_file net/socket.c:2049 [inline]\n __sys_connect+0x5d2/0x690 net/socket.c:2066\n __do_sys_connect net/socket.c:2076 [inline]\n __se_sys_connect net/socket.c:2073 [inline]\n __x64_sys_connect+0x8f/0x100 net/socket.c:2073\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xd9/0x1c0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7fbd708b0e5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff8cd33f08 EFLAGS: 00000246 ORIG_RAX: 000000000000002a\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbd708b0e5d\nRDX: 0000000000000010 RSI: 0000000020000040 RDI: 0000000000000003\nRBP: 0000000000000000 R08: 0000000000000040 R09: 0000000000000040\nR10: 0000000000000040 R11: 0000000000000246 R12: 00007fff8cd34098\nR13: 0000000000401280 R14: 0000000000406de8 R15: 00007fbd70ab9000\n \u003c/TASK\u003e\nremove_proc_entry: removing non-empty directory \u0027net/can-bcm\u0027, leaking at least \u00272456\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46771",
"url": "https://www.suse.com/security/cve/CVE-2024-46771"
},
{
"category": "external",
"summary": "SUSE Bug 1230766 for CVE-2024-46771",
"url": "https://bugzilla.suse.com/1230766"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46771"
},
{
"cve": "CVE-2024-46772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46772"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator crb_pipes before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 2 DIVIDE_BY_ZERO issues reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46772",
"url": "https://www.suse.com/security/cve/CVE-2024-46772"
},
{
"category": "external",
"summary": "SUSE Bug 1230772 for CVE-2024-46772",
"url": "https://bugzilla.suse.com/1230772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46772"
},
{
"cve": "CVE-2024-46773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check denominator pbn_div before used\n\n[WHAT \u0026 HOW]\nA denominator cannot be 0, and is checked before used.\n\nThis fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46773",
"url": "https://www.suse.com/security/cve/CVE-2024-46773"
},
{
"category": "external",
"summary": "SUSE Bug 1230791 for CVE-2024-46773",
"url": "https://bugzilla.suse.com/1230791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46773"
},
{
"cve": "CVE-2024-46774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46774"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()\n\nSmatch warns:\n\n arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential\n spectre issue \u0027args.args\u0027 [r] (local cap)\n\nThe \u0027nargs\u0027 and \u0027nret\u0027 locals come directly from a user-supplied\nbuffer and are used as indexes into a small stack-based array and as\ninputs to copy_to_user() after they are subject to bounds checks.\n\nUse array_index_nospec() after the bounds checks to clamp these values\nfor speculative execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46774",
"url": "https://www.suse.com/security/cve/CVE-2024-46774"
},
{
"category": "external",
"summary": "SUSE Bug 1230767 for CVE-2024-46774",
"url": "https://bugzilla.suse.com/1230767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46774"
},
{
"cve": "CVE-2024-46776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Run DC_LOG_DC after checking link-\u003elink_enc\n\n[WHAT]\nThe DC_LOG_DC should be run after link-\u003elink_enc is checked, not before.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46776",
"url": "https://www.suse.com/security/cve/CVE-2024-46776"
},
{
"category": "external",
"summary": "SUSE Bug 1230775 for CVE-2024-46776",
"url": "https://bugzilla.suse.com/1230775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46776"
},
{
"cve": "CVE-2024-46778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check UnboundedRequestEnabled\u0027s value\n\nCalculateSwathAndDETConfiguration_params_st\u0027s UnboundedRequestEnabled\nis a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus\nif (p-\u003eUnboundedRequestEnabled) checks its address, not bool value.\n\nThis fixes 1 REVERSE_INULL issue reported by Coverity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46778",
"url": "https://www.suse.com/security/cve/CVE-2024-46778"
},
{
"category": "external",
"summary": "SUSE Bug 1230776 for CVE-2024-46778",
"url": "https://bugzilla.suse.com/1230776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46778"
},
{
"cve": "CVE-2024-46780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46780"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues. So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46780",
"url": "https://www.suse.com/security/cve/CVE-2024-46780"
},
{
"category": "external",
"summary": "SUSE Bug 1230808 for CVE-2024-46780",
"url": "https://bugzilla.suse.com/1230808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46780"
},
{
"cve": "CVE-2024-46781",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46781"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix missing cleanup on rollforward recovery error\n\nIn an error injection test of a routine for mount-time recovery, KASAN\nfound a use-after-free bug.\n\nIt turned out that if data recovery was performed using partial logs\ncreated by dsync writes, but an error occurred before starting the log\nwriter to create a recovered checkpoint, the inodes whose data had been\nrecovered were left in the ns_dirty_files list of the nilfs object and\nwere not freed.\n\nFix this issue by cleaning up inodes that have read the recovery data if\nthe recovery routine fails midway before the log writer starts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46781",
"url": "https://www.suse.com/security/cve/CVE-2024-46781"
},
{
"category": "external",
"summary": "SUSE Bug 1230768 for CVE-2024-46781",
"url": "https://bugzilla.suse.com/1230768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46781"
},
{
"cve": "CVE-2024-46783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: fix return value of tcp_bpf_sendmsg()\n\nWhen we cork messages in psock-\u003ecork, the last message triggers the\nflushing will result in sending a sk_msg larger than the current\nmessage size. In this case, in tcp_bpf_send_verdict(), \u0027copied\u0027 becomes\nnegative at least in the following case:\n\n468 case __SK_DROP:\n469 default:\n470 sk_msg_free_partial(sk, msg, tosend);\n471 sk_msg_apply_bytes(psock, tosend);\n472 *copied -= (tosend + delta); // \u003c==== HERE\n473 return -EACCES;\n\nTherefore, it could lead to the following BUG with a proper value of\n\u0027copied\u0027 (thanks to syzbot). We should not use negative \u0027copied\u0027 as a\nreturn value here.\n\n ------------[ cut here ]------------\n kernel BUG at net/socket.c:733!\n Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP\n Modules linked in:\n CPU: 0 UID: 0 PID: 3265 Comm: syz-executor510 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0\n Hardware name: linux,dummy-virt (DT)\n pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : sock_sendmsg_nosec net/socket.c:733 [inline]\n pc : sock_sendmsg_nosec net/socket.c:728 [inline]\n pc : __sock_sendmsg+0x5c/0x60 net/socket.c:745\n lr : sock_sendmsg_nosec net/socket.c:730 [inline]\n lr : __sock_sendmsg+0x54/0x60 net/socket.c:745\n sp : ffff800088ea3b30\n x29: ffff800088ea3b30 x28: fbf00000062bc900 x27: 0000000000000000\n x26: ffff800088ea3bc0 x25: ffff800088ea3bc0 x24: 0000000000000000\n x23: f9f00000048dc000 x22: 0000000000000000 x21: ffff800088ea3d90\n x20: f9f00000048dc000 x19: ffff800088ea3d90 x18: 0000000000000001\n x17: 0000000000000000 x16: 0000000000000000 x15: 000000002002ffaf\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff8000815849c0 x9 : ffff8000815b49c0\n x8 : 0000000000000000 x7 : 000000000000003f x6 : 0000000000000000\n x5 : 00000000000007e0 x4 : fff07ffffd239000 x3 : fbf00000062bc900\n x2 : 0000000000000000 x1 : 0000000000000000 x0 : 00000000fffffdef\n Call trace:\n sock_sendmsg_nosec net/socket.c:733 [inline]\n __sock_sendmsg+0x5c/0x60 net/socket.c:745\n ____sys_sendmsg+0x274/0x2ac net/socket.c:2597\n ___sys_sendmsg+0xac/0x100 net/socket.c:2651\n __sys_sendmsg+0x84/0xe0 net/socket.c:2680\n __do_sys_sendmsg net/socket.c:2689 [inline]\n __se_sys_sendmsg net/socket.c:2687 [inline]\n __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2687\n __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49\n el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132\n do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151\n el0_svc+0x34/0xec arch/arm64/kernel/entry-common.c:712\n el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730\n el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:598\n Code: f9404463 d63f0060 3108441f 54fffe81 (d4210000)\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46783",
"url": "https://www.suse.com/security/cve/CVE-2024-46783"
},
{
"category": "external",
"summary": "SUSE Bug 1230810 for CVE-2024-46783",
"url": "https://bugzilla.suse.com/1230810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46783"
},
{
"cve": "CVE-2024-46784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix error handling in mana_create_txq/rxq\u0027s NAPI cleanup\n\nCurrently napi_disable() gets called during rxq and txq cleanup,\neven before napi is enabled and hrtimer is initialized. It causes\nkernel panic.\n\n? page_fault_oops+0x136/0x2b0\n ? page_counter_cancel+0x2e/0x80\n ? do_user_addr_fault+0x2f2/0x640\n ? refill_obj_stock+0xc4/0x110\n ? exc_page_fault+0x71/0x160\n ? asm_exc_page_fault+0x27/0x30\n ? __mmdrop+0x10/0x180\n ? __mmdrop+0xec/0x180\n ? hrtimer_active+0xd/0x50\n hrtimer_try_to_cancel+0x2c/0xf0\n hrtimer_cancel+0x15/0x30\n napi_disable+0x65/0x90\n mana_destroy_rxq+0x4c/0x2f0\n mana_create_rxq.isra.0+0x56c/0x6d0\n ? mana_uncfg_vport+0x50/0x50\n mana_alloc_queues+0x21b/0x320\n ? skb_dequeue+0x5f/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46784",
"url": "https://www.suse.com/security/cve/CVE-2024-46784"
},
{
"category": "external",
"summary": "SUSE Bug 1230771 for CVE-2024-46784",
"url": "https://bugzilla.suse.com/1230771"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46784"
},
{
"cve": "CVE-2024-46786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46786"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF\n\nThe fscache_cookie_lru_timer is initialized when the fscache module\nis inserted, but is not deleted when the fscache module is removed.\nIf timer_reduce() is called before removing the fscache module,\nthe fscache_cookie_lru_timer will be added to the timer list of\nthe current cpu. Afterwards, a use-after-free will be triggered\nin the softIRQ after removing the fscache module, as follows:\n\n==================================================================\nBUG: unable to handle page fault for address: fffffbfff803c9e9\n PF: supervisor read access in kernel mode\n PF: error_code(0x0000) - not-present page\nPGD 21ffea067 P4D 21ffea067 PUD 21ffe6067 PMD 110a7c067 PTE 0\nOops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.11.0-rc3 #855\nTainted: [W]=WARN\nRIP: 0010:__run_timer_base.part.0+0x254/0x8a0\nCall Trace:\n \u003cIRQ\u003e\n tmigr_handle_remote_up+0x627/0x810\n __walk_groups.isra.0+0x47/0x140\n tmigr_handle_remote+0x1fa/0x2f0\n handle_softirqs+0x180/0x590\n irq_exit_rcu+0x84/0xb0\n sysvec_apic_timer_interrupt+0x6e/0x90\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1a/0x20\nRIP: 0010:default_idle+0xf/0x20\n default_idle_call+0x38/0x60\n do_idle+0x2b5/0x300\n cpu_startup_entry+0x54/0x60\n start_secondary+0x20d/0x280\n common_startup_64+0x13e/0x148\n \u003c/TASK\u003e\nModules linked in: [last unloaded: netfs]\n==================================================================\n\nTherefore delete fscache_cookie_lru_timer when removing the fscahe module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46786",
"url": "https://www.suse.com/security/cve/CVE-2024-46786"
},
{
"category": "external",
"summary": "SUSE Bug 1230813 for CVE-2024-46786",
"url": "https://bugzilla.suse.com/1230813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46786"
},
{
"cve": "CVE-2024-46787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuserfaultfd: fix checks for huge PMDs\n\nPatch series \"userfaultfd: fix races around pmd_trans_huge() check\", v2.\n\nThe pmd_trans_huge() code in mfill_atomic() is wrong in three different\nways depending on kernel version:\n\n1. The pmd_trans_huge() check is racy and can lead to a BUG_ON() (if you hit\n the right two race windows) - I\u0027ve tested this in a kernel build with\n some extra mdelay() calls. See the commit message for a description\n of the race scenario.\n On older kernels (before 6.5), I think the same bug can even\n theoretically lead to accessing transhuge page contents as a page table\n if you hit the right 5 narrow race windows (I haven\u0027t tested this case).\n2. As pointed out by Qi Zheng, pmd_trans_huge() is not sufficient for\n detecting PMDs that don\u0027t point to page tables.\n On older kernels (before 6.5), you\u0027d just have to win a single fairly\n wide race to hit this.\n I\u0027ve tested this on 6.1 stable by racing migration (with a mdelay()\n patched into try_to_migrate()) against UFFDIO_ZEROPAGE - on my x86\n VM, that causes a kernel oops in ptlock_ptr().\n3. On newer kernels (\u003e=6.5), for shmem mappings, khugepaged is allowed\n to yank page tables out from under us (though I haven\u0027t tested that),\n so I think the BUG_ON() checks in mfill_atomic() are just wrong.\n\nI decided to write two separate fixes for these (one fix for bugs 1+2, one\nfix for bug 3), so that the first fix can be backported to kernels\naffected by bugs 1+2.\n\n\nThis patch (of 2):\n\nThis fixes two issues.\n\nI discovered that the following race can occur:\n\n mfill_atomic other thread\n ============ ============\n \u003czap PMD\u003e\n pmdp_get_lockless() [reads none pmd]\n \u003cbail if trans_huge\u003e\n \u003cif none:\u003e\n \u003cpagefault creates transhuge zeropage\u003e\n __pte_alloc [no-op]\n \u003czap PMD\u003e\n \u003cbail if pmd_trans_huge(*dst_pmd)\u003e\n BUG_ON(pmd_none(*dst_pmd))\n\nI have experimentally verified this in a kernel with extra mdelay() calls;\nthe BUG_ON(pmd_none(*dst_pmd)) triggers.\n\nOn kernels newer than commit 0d940a9b270b (\"mm/pgtable: allow\npte_offset_map[_lock]() to fail\"), this can\u0027t lead to anything worse than\na BUG_ON(), since the page table access helpers are actually designed to\ndeal with page tables concurrently disappearing; but on older kernels\n(\u003c=6.4), I think we could probably theoretically race past the two\nBUG_ON() checks and end up treating a hugepage as a page table.\n\nThe second issue is that, as Qi Zheng pointed out, there are other types\nof huge PMDs that pmd_trans_huge() can\u0027t catch: devmap PMDs and swap PMDs\n(in particular, migration PMDs).\n\nOn \u003c=6.4, this is worse than the first issue: If mfill_atomic() runs on a\nPMD that contains a migration entry (which just requires winning a single,\nfairly wide race), it will pass the PMD to pte_offset_map_lock(), which\nassumes that the PMD points to a page table.\n\nBreakage follows: First, the kernel tries to take the PTE lock (which will\ncrash or maybe worse if there is no \"struct page\" for the address bits in\nthe migration entry PMD - I think at least on X86 there usually is no\ncorresponding \"struct page\" thanks to the PTE inversion mitigation, amd64\nlooks different).\n\nIf that didn\u0027t crash, the kernel would next try to write a PTE into what\nit wrongly thinks is a page table.\n\nAs part of fixing these issues, get rid of the check for pmd_trans_huge()\nbefore __pte_alloc() - that\u0027s redundant, we\u0027re going to have to check for\nthat after the __pte_alloc() anyway.\n\nBackport note: pmdp_get_lockless() is pmd_read_atomic() in older kernels.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46787",
"url": "https://www.suse.com/security/cve/CVE-2024-46787"
},
{
"category": "external",
"summary": "SUSE Bug 1230815 for CVE-2024-46787",
"url": "https://bugzilla.suse.com/1230815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46787"
},
{
"cve": "CVE-2024-46791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open\n\nThe mcp251x_hw_wake() function is called with the mpc_lock mutex held and\ndisables the interrupt handler so that no interrupts can be processed while\nwaking the device. If an interrupt has already occurred then waiting for\nthe interrupt handler to complete will deadlock because it will be trying\nto acquire the same mutex.\n\nCPU0 CPU1\n---- ----\nmcp251x_open()\n mutex_lock(\u0026priv-\u003emcp_lock)\n request_threaded_irq()\n \u003cinterrupt\u003e\n mcp251x_can_ist()\n mutex_lock(\u0026priv-\u003emcp_lock)\n mcp251x_hw_wake()\n disable_irq() \u003c-- deadlock\n\nUse disable_irq_nosync() instead because the interrupt handler does\neverything while holding the mutex so it doesn\u0027t matter if it\u0027s still\nrunning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46791",
"url": "https://www.suse.com/security/cve/CVE-2024-46791"
},
{
"category": "external",
"summary": "SUSE Bug 1230821 for CVE-2024-46791",
"url": "https://bugzilla.suse.com/1230821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46791"
},
{
"cve": "CVE-2024-46794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix data leak in mmio_read()\n\nThe mmio_read() function makes a TDVMCALL to retrieve MMIO data for an\naddress from the VMM.\n\nSean noticed that mmio_read() unintentionally exposes the value of an\ninitialized variable (val) on the stack to the VMM.\n\nThis variable is only needed as an output value. It did not need to be\npassed to the VMM in the first place.\n\nDo not send the original value of *val to the VMM.\n\n[ dhansen: clarify what \u0027val\u0027 is used for. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46794",
"url": "https://www.suse.com/security/cve/CVE-2024-46794"
},
{
"category": "external",
"summary": "SUSE Bug 1230825 for CVE-2024-46794",
"url": "https://bugzilla.suse.com/1230825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46794"
},
{
"cve": "CVE-2024-46797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/qspinlock: Fix deadlock in MCS queue\n\nIf an interrupt occurs in queued_spin_lock_slowpath() after we increment\nqnodesp-\u003ecount and before node-\u003elock is initialized, another CPU might\nsee stale lock values in get_tail_qnode(). If the stale lock value happens\nto match the lock on that CPU, then we write to the \"next\" pointer of\nthe wrong qnode. This causes a deadlock as the former CPU, once it becomes\nthe head of the MCS queue, will spin indefinitely until it\u0027s \"next\" pointer\nis set by its successor in the queue.\n\nRunning stress-ng on a 16 core (16EC/16VP) shared LPAR, results in\noccasional lockups similar to the following:\n\n $ stress-ng --all 128 --vm-bytes 80% --aggressive \\\n --maximize --oomable --verify --syslog \\\n --metrics --times --timeout 5m\n\n watchdog: CPU 15 Hard LOCKUP\n ......\n NIP [c0000000000b78f4] queued_spin_lock_slowpath+0x1184/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n Call Trace:\n 0xc000002cfffa3bf0 (unreliable)\n _raw_spin_lock+0x6c/0x90\n raw_spin_rq_lock_nested.part.135+0x4c/0xd0\n sched_ttwu_pending+0x60/0x1f0\n __flush_smp_call_function_queue+0x1dc/0x670\n smp_ipi_demux_relaxed+0xa4/0x100\n xive_muxed_ipi_action+0x20/0x40\n __handle_irq_event_percpu+0x80/0x240\n handle_irq_event_percpu+0x2c/0x80\n handle_percpu_irq+0x84/0xd0\n generic_handle_irq+0x54/0x80\n __do_irq+0xac/0x210\n __do_IRQ+0x74/0xd0\n 0x0\n do_IRQ+0x8c/0x170\n hardware_interrupt_common_virt+0x29c/0x2a0\n --- interrupt: 500 at queued_spin_lock_slowpath+0x4b8/0x1490\n ......\n NIP [c0000000000b6c28] queued_spin_lock_slowpath+0x4b8/0x1490\n LR [c000000001037c5c] _raw_spin_lock+0x6c/0x90\n --- interrupt: 500\n 0xc0000029c1a41d00 (unreliable)\n _raw_spin_lock+0x6c/0x90\n futex_wake+0x100/0x260\n do_futex+0x21c/0x2a0\n sys_futex+0x98/0x270\n system_call_exception+0x14c/0x2f0\n system_call_vectored_common+0x15c/0x2ec\n\nThe following code flow illustrates how the deadlock occurs.\nFor the sake of brevity, assume that both locks (A and B) are\ncontended and we call the queued_spin_lock_slowpath() function.\n\n CPU0 CPU1\n ---- ----\n spin_lock_irqsave(A) |\n spin_unlock_irqrestore(A) |\n spin_lock(B) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++; |\n (Note that nodes[0].lock == A) |\n | |\n \u25bc |\n Interrupt |\n (happens before \"nodes[0].lock = B\") |\n | |\n \u25bc |\n spin_lock_irqsave(A) |\n | |\n \u25bc |\n id = qnodesp-\u003ecount++ |\n nodes[1].lock = A |\n | |\n \u25bc |\n Tail of MCS queue |\n | spin_lock_irqsave(A)\n \u25bc |\n Head of MCS queue \u25bc\n | CPU0 is previous tail\n \u25bc |\n Spin indefinitely \u25bc\n (until \"nodes[1].next != NULL\") prev = get_tail_qnode(A, CPU0)\n |\n \u25bc\n prev == \u0026qnodes[CPU0].nodes[0]\n (as qnodes\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46797",
"url": "https://www.suse.com/security/cve/CVE-2024-46797"
},
{
"category": "external",
"summary": "SUSE Bug 1230831 for CVE-2024-46797",
"url": "https://bugzilla.suse.com/1230831"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46797"
},
{
"cve": "CVE-2024-46798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: dapm: Fix UAF for snd_soc_pcm_runtime object\n\nWhen using kernel with the following extra config,\n\n - CONFIG_KASAN=y\n - CONFIG_KASAN_GENERIC=y\n - CONFIG_KASAN_INLINE=y\n - CONFIG_KASAN_VMALLOC=y\n - CONFIG_FRAME_WARN=4096\n\nkernel detects that snd_pcm_suspend_all() access a freed\n\u0027snd_soc_pcm_runtime\u0027 object when the system is suspended, which\nleads to a use-after-free bug:\n\n[ 52.047746] BUG: KASAN: use-after-free in snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047765] Read of size 1 at addr ffff0000b9434d50 by task systemd-sleep/2330\n\n[ 52.047785] Call trace:\n[ 52.047787] dump_backtrace+0x0/0x3c0\n[ 52.047794] show_stack+0x34/0x50\n[ 52.047797] dump_stack_lvl+0x68/0x8c\n[ 52.047802] print_address_description.constprop.0+0x74/0x2c0\n[ 52.047809] kasan_report+0x210/0x230\n[ 52.047815] __asan_report_load1_noabort+0x3c/0x50\n[ 52.047820] snd_pcm_suspend_all+0x1a8/0x270\n[ 52.047824] snd_soc_suspend+0x19c/0x4e0\n\nThe snd_pcm_sync_stop() has a NULL check on \u0027substream-\u003eruntime\u0027 before\nmaking any access. So we need to always set \u0027substream-\u003eruntime\u0027 to NULL\neverytime we kfree() it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46798",
"url": "https://www.suse.com/security/cve/CVE-2024-46798"
},
{
"category": "external",
"summary": "SUSE Bug 1230830 for CVE-2024-46798",
"url": "https://bugzilla.suse.com/1230830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46798"
},
{
"cve": "CVE-2024-46822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-46822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry\n\nIn a review discussion of the changes to support vCPU hotplug where\na check was added on the GICC being enabled if was online, it was\nnoted that there is need to map back to the cpu and use that to index\ninto a cpumask. As such, a valid ID is needed.\n\nIf an MPIDR check fails in acpi_map_gic_cpu_interface() it is possible\nfor the entry in cpu_madt_gicc[cpu] == NULL. This function would\nthen cause a NULL pointer dereference. Whilst a path to trigger\nthis has not been established, harden this caller against the\npossibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-46822",
"url": "https://www.suse.com/security/cve/CVE-2024-46822"
},
{
"category": "external",
"summary": "SUSE Bug 1231120 for CVE-2024-46822",
"url": "https://bugzilla.suse.com/1231120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-11.1.noarch",
"SUSE Linux Micro 6.0:kernel-livepatch-6_4_0-11-rt-1-1.2.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-11.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-11.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T09:05:12Z",
"details": "moderate"
}
],
"title": "CVE-2024-46822"
}
]
}
suse-su-2024:4364-1
Vulnerability from csaf_suse
Published
2024-12-17 15:57
Modified
2024-12-17 15:57
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560).
- CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556).
- CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893).
- CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973).
- CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889).
- CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976).
- CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979).
- CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286).
- CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191).
- CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233).
- CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959).
- CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070).
- CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938).
- CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004).
- CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175).
- CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590).
- CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).
- CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656).
- CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb->head (bsc#1224518).
- CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526).
- CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797).
- CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725).
- CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730).
- CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742).
- CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764).
- CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).
- CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748).
- CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592).
- CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853).
- CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430).
- CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709).
- CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005).
- CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837).
- CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808).
- CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179).
- CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220).
- CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231).
- CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).
- CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456).
- CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550).
- CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558).
- CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715).
- CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801).
- CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763).
- CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774).
- CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773).
- CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827).
- CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148).
- CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179).
- CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191).
- CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193).
- CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195).
- CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197).
- CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200).
- CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203).
- CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115).
- CVE-2024-46828: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1231114).
- CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096).
- CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105).
- CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094).
- CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072).
- CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073).
- CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084).
- CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085).
- CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087).
- CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439).
- CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496).
- CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442).
- CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502).
- CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540).
- CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539).
- CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).
- CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()&iput() (bsc#1231930).
- CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987).
- CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998).
- CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857).
- CVE-2024-47701: ext4: explicitly exit when ext4_find_inline_entry returns an error (bsc#1231920).
- CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944).
- CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872).
- CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942).
- CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935).
- CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049).
- CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043).
- CVE-2024-47727: x86/tdx: Fix 'in-kernel MMIO' check (bsc#1232116).
- CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075).
- CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114).
- CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124).
- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).
- CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).
- CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174).
- CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187).
- CVE-2024-49858: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (bsc#1232251).
- CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861).
- CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259).
- CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272).
- CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201).
- CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200).
- CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199).
- CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196).
- CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217).
- CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220).
- CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221).
- CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355).
- CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358).
- CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305).
- CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332).
- CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337).
- CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366).
- CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369).
- CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965).
- CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967).
- CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968).
- CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313).
- CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371).
- CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374).
- CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361).
- CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224)
- CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253).
- CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260).
- CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368).
- CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387).
- CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424).
- CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381).
- CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165).
- CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164).
- CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160).
- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).
- CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155).
- CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154).
- CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151).
- CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149).
- CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395).
- CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140).
- CVE-2024-49968: ext4: fix error message when rejecting the default hash (bsc#1232264).
- CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519).
- CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105).
- CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).
- CVE-2024-49975: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1232104).
- CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096).
- CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483).
- CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282).
- CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316).
- CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).
- CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089).
- CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085).
- CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084).
- CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083).
- CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442).
- CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value (bsc#1232318).
- CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446).
- CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990).
- CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954).
- CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950).
- CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914).
- CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392).
- CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907).
- CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903).
- CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902).
- CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).
- CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310).
- CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329).
- CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285).
- CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345).
- CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263).
- CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435).
- CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520).
- CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501).
- CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500).
- CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860).
- CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877).
- CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881).
- CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884).
- CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885).
- CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919).
- CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928).
- CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907).
- CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905).
- CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890).
- CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888).
- CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935).
- CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056).
- CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067).
- CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061).
- CVE-2024-50154: tcp: Fix use-after-free of nreq in reqsk_timer_handler() (bsc#1233070).
- CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049).
- CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057).
- CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129).
- CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135).
- CVE-2024-50186: net: explicitly clear the sk pointer, when pf->create fails (bsc#1233110).
- CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107).
- CVE-2024-50192: irqchip/gic-v4: Correctly deal with set_affinity on lazily-mapped VPEs (bsc#1233106).
- CVE-2024-50195: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() (bsc#1233103).
- CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113).
- CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293).
- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117).
- CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205).
- CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206).
- CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214).
- CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253).
- CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233453).
- CVE-2024-50267: usb: serial: io_edgeport: fix use after free in debug printk (bsc#1233456).
- CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460).
- CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462).
- CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463).
- CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468).
- CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478).
- CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484).
- CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487).
- CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548).
- CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552).
- CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555).
- CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557).
- CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561).
- CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570).
- CVE-2024-53088: i40e: fix race condition by adding filter's intermediate sync state (bsc#1233580).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).
- CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085).
The following non-security bugs were fixed:
- acpi: battery: Call power_supply_changed() when adding hooks (bsc#1232154)
- acpi: battery: Simplify battery hook locking (bsc#1232154)
- acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).
- acpi: CPPC: Fix _CPC register setting issue (git-fixes).
- acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).
- acpi: EC: Do not release locks during operation region accesses (stable-fixes).
- acpi: PAD: fix crash in exit_round_robin() (stable-fixes).
- acpi: PRM: Clean up guid type in struct prm_handler_info (git-fixes).
- acpi: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes).
- acpi: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes).
- acpi: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes).
- acpi: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes).
- acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).
- acpica: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes).
- acpica: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes).
- acpica: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes).
- acpica: iasl: handle empty connection_node (stable-fixes).
- ad7780: fix division by zero in ad7780_write_raw() (git-fixes).
- adapt same struct naming as similar kABI workaround in SLE15-SP6 (prefixed with 'suse_' to make it more obvious its a downstream thing.
- add bug reference for a mana change (bsc#1229769).
- add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036).
- add bugreference to a hv_netvsc patch (bsc#1232413).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- alsa: 6fire: Release resources at card release (git-fixes).
- alsa: ac97: bus: Fix the mistake in the comment (git-fixes).
- alsa: asihpi: Fix potential OOB array access (stable-fixes).
- alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: core: add isascii() check to card ID generator (stable-fixes).
- alsa: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes).
- alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes).
- alsa: hda: cs35l41: fix module autoloading (git-fixes).
- alsa: hda: Fix kctl->id initialization (git-fixes).
- alsa: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes).
- alsa: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes).
- alsa: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes).
- alsa: hda/cs8409: Fix possible NULL dereference (git-fixes).
- alsa: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes).
- alsa: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes).
- alsa: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes).
- alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes).
- alsa: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes).
- alsa: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes).
- alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).
- alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).
- alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes).
- alsa: hda/realtek: Fix the push button function for the ALC257 (git-fixes).
- alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).
- alsa: hda/realtek: Update ALC225 depop procedure (git-fixes).
- alsa: hda/realtek: Update ALC256 depop procedure (git-fixes).
- alsa: hda/realtek: Update default depop procedure (git-fixes).
- alsa: hdsp: Break infinite MIDI input flush loop (stable-fixes).
- alsa: line6: add hw monitor volume control to POD HD500X (stable-fixes).
- alsa: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes).
- alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes).
- alsa: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes).
- alsa: usb-audio: Add input value sanity checks for standard types (stable-fixes).
- alsa: usb-audio: Add logitech Audio profile quirk (stable-fixes).
- alsa: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes).
- alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes).
- alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).
- alsa: usb-audio: Define macros for quirk table entries (stable-fixes).
- alsa: usb-audio: Replace complex quirk lines with macros (stable-fixes).
- alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes).
- amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes).
- arm64: cputype: Add Neoverse-N3 definitions (git-fixes)
- arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: errata: Expand speculative SSBS workaround once more (git-fixes)
- arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes)
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes)
- arm64: Force position-independent veneers (git-fixes).
- arm64: probes: Fix simulate_ldr*_literal() (git-fixes)
- arm64: probes: Fix uprobes for big-endian kernels (git-fixes)
- arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes)
- arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes)
- arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes)
- arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes)
- asoc: allow module autoloading for table db1200_pids (stable-fixes).
- asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes).
- asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes).
- asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).
- asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).
- asoc: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes).
- asoc: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes).
- asoc: intel: fix module autoloading (stable-fixes).
- asoc: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).
- asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).
- asoc: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- asoc: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes).
- asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes).
- asoc: tda7419: fix module autoloading (stable-fixes).
- blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528).
- block: Avoid leaking hctx->nr_active counter on batched completion (bsc#1231923).
- block: print symbolic error name instead of error code (bsc#1231872).
- bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes).
- bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes).
- bluetooth: Call iso_exit() on module unload (git-fixes).
- bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes).
- bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).
- bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes).
- bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes).
- bluetooth: Remove debugfs directory on module init failure (git-fixes).
- bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes).
- bnxt_en: Fix the PCI-AER routines (git-fixes).
- bnxt_en: refactor reset close code (git-fixes).
- bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes).
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes).
- bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes).
- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).
- bnxt_en: Wait for FLR to complete during probe (git-fixes).
- bpf, lsm: Add disabled BPF LSM hook list (git-fixes).
- bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes).
- bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes).
- bpf, x64: Remove tail call detection (git-fixes).
- bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes).
- bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450).
- bpf: Allow helpers to accept pointers with a fixed size (git-fixes).
- bpf: Check for helper calls in check_subprogs() (git-fixes).
- bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes).
- bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes).
- bpf: Fix helper writes to read-only maps (git-fixes).
- bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375).
- bpf: Fix tailcall cases in test_bpf (git-fixes).
- bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes).
- bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes).
- bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes).
- btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes).
- can: c_can: fix {rx,tx}_errors statistics (git-fixes).
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: j1939: j1939_session_new(): fix skb reference counting (git-fixes).
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes).
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes).
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes).
- ceph: fix cap ref leak via netfs init_request (bsc#1231383).
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108).
- char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes).
- chtls: fix tp->rcv_tstamp initialization (git-fixes).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- comedi: Flush partial mappings in error case (git-fixes).
- comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes).
- cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes).
- crypto: bcm - add error check in the ahash_hmac_init function (git-fixes).
- crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes).
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes).
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes).
- crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes).
- crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075)
- crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075)
- crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes).
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes).
- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).
- cxgb4: Properly lock TX queue for the selftest (git-fixes).
- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).
- debugfs: fix automount d_fsdata usage (git-fixes).
- dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).
- drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes).
- drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes).
- driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes).
- drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes).
- drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes).
- drm/amd: Guard against bad data for ATIF ACPI method (git-fixes).
- drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes).
- drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes).
- drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes).
- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).
- drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944)
- drm/amd/display: Check null pointer before dereferencing se (stable-fixes).
- drm/amd/display: Check null pointers before using dc->clk_mgr (stable-fixes).
- drm/amd/display: Check stream before comparing them (stable-fixes).
- drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes).
- drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes).
- drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes).
- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
- drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes).
- drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' (stable-fixes).
- drm/amd/display: Initialize get_bytes_per_element's default to 1 (stable-fixes).
- drm/amd/display: Round calculated vtotal (stable-fixes).
- drm/amd/display: Validate backlight caps are sane (stable-fixes).
- drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes).
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes).
- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes).
- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes).
- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
- drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes).
- drm/bridge: tc358767: Fix link properties discovery (git-fixes).
- drm/bridge: tc358768: Fix DSI command tx (git-fixes).
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes).
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes).
- drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes).
- drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes).
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes).
- drm/msm/dpu: do not always program merge_3d block (git-fixes).
- drm/msm/dpu: make sure phys resources are properly initialized (git-fixes).
- drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes).
- drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes).
- drm/omap: Fix possible NULL dereference (git-fixes).
- drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes).
- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
- drm/radeon: Fix encoder->possible_clones (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/radeon: Replace one-element array with flexible-array member (stable-fixes).
- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).
- drm/rockchip: define gamma registers for RK3399 (stable-fixes).
- drm/rockchip: support gamma control on RK3399 (stable-fixes).
- drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes).
- drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes).
- drm/sti: avoid potential dereference of error pointers (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes).
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes).
- drm/v3d: Address race-condition in MMU flush (git-fixes).
- drm/v3d: Stop the active perfmon before being destroyed (git-fixes).
- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).
- drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes).
- drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes).
- drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes).
- drm/vc4: Stop the active perfmon before being destroyed (git-fixes).
- drm/vmwgfx: Handle surface check failure correctly (git-fixes).
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes).
- drop HD-audio conexant patch that caused a regression on Thinkpad (bsc#1228269)
- Drop OCFS2 patch causing a regression (bsc#1233255)
- drop USB dwc2 patch that caused a regression on RPi3 (bsc#1232342)
- e1000e: Fix S0ix residency on corporate systems (git-fixes).
- efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465).
- efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes).
- erofs: avoid consecutive detection for Highmem memory (git-fixes).
- erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes).
- erofs: fix pcluster use-after-free on UP platforms (git-fixes).
- erofs: fix potential overflow calculating xattr_isize (git-fixes).
- erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes).
- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).
- exportfs: use pr_debug for unreachable debug statements (git-fixes).
- ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201)
- fat: fix uninitialized variable (git-fixes).
- fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes).
- fbdev: sisfb: Fix strbuf array overflow (stable-fixes).
- fgraph: Change the name of cpuhp state to 'fgraph:online' (git-fixes).
- fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes).
- fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes).
- filelock: fix potential use-after-free in posix_lock_inode (git-fixes).
- firmware: google: Unregister driver_info on failure (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- Fix regression on AMDGPU driver (bsc#1233134)
- fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes).
- fs/namespace: fnic: Switch to use %ptTd (git-fixes).
- fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).
- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).
- goldfish: Fix unused const variable 'goldfish_pipe_acpi_match' (git-fixes).
- gpio: aspeed: Add the flush write to ensure the write complete (git-fixes).
- gpio: aspeed: Use devm_clk api to manage clock source (git-fixes).
- gpio: davinci: fix lazy disable (git-fixes).
- gve: Fix an edge case for TSO skb validity check (git-fixes).
- gve: Fix skb truesize underestimation (git-fixes).
- gve: Fix XDP TX completion handling when counters overflow (git-fixes).
- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).
- hid: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes).
- hid: core: zero-initialize the report buffer (git-fixes).
- hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes).
- hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes).
- hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes).
- hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes).
- hid: multitouch: Add support for B2402FVA track point (stable-fixes).
- hid: multitouch: Add support for GT7868Q (stable-fixes).
- hid: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes).
- hid: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes).
- hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes).
- hid: wacom: fix when get product name maybe null pointer (git-fixes).
- hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes).
- hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes).
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (git-fixes).
- hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes).
- i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes).
- i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885).
- i2c: imx-lpi2c: use bulk clk API (bsc#1227885).
- i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes).
- i2c: xiic: Fix broken locking on tx_msg (stable-fixes).
- i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).
- i2c: xiic: Fix RX IRQ busy check (stable-fixes).
- i2c: xiic: improve error message when transfer fails to start (stable-fixes).
- i2c: xiic: Switch from waitqueue to completion (stable-fixes).
- i2c: xiic: Try re-initialization on bus busy timeout (git-fixes).
- i2c: xiic: Use devm_clk_get_enabled() (stable-fixes).
- i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes).
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes).
- i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes).
- i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes).
- i40e: Fix filter input checks to prevent config with invalid values (git-fixes).
- i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes).
- i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes).
- i40e: Fix XDP program unloading while removing the driver (git-fixes).
- i40e: Report MFS in decimal base instead of hex (git-fixes).
- i40e: Restore VF MSI-X state during PCI reset (git-fixes).
- i40e: take into account XDP Tx queues when stopping rings (git-fixes).
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes).
- iavf: fix FDIR rule fields masks validation (git-fixes).
- iavf: Fix promiscuous mode configuration flow messages (git-fixes).
- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).
- iavf: in iavf_down, disable queues when removing the driver (git-fixes).
- iavf: initialize waitqueues before starting watchdog_task (git-fixes).
- iavf: Introduce new state machines for flow director (git-fixes).
- iavf: send VLAN offloading caps once after VFR (git-fixes).
- iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes).
- ibmvnic: Do partial reset on login failure (bsc#1233150).
- ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150).
- ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150).
- ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150).
- ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150).
- ice: avoid executing commands on other ports when driving sync (git-fixes).
- ice: Block switchdev mode when ADQ is active and vice versa (git-fixes).
- ice: change q_index variable type to s16 to store -1 value (git-fixes).
- ice: fix accounting for filters shared by multiple VSIs (git-fixes).
- ice: fix accounting if a VLAN already exists (git-fixes).
- ice: fix ICE_LAST_OFFSET formula (git-fixes).
- ice: Fix link_down_on_close message (git-fixes).
- ice: Fix netif_is_ice() in Safe Mode (git-fixes).
- ice: Fix NULL pointer deref during VF reset (git-fixes).
- ice: fix over-shifted variable (git-fixes).
- ice: fix receive buffer size miscalculation (git-fixes).
- ice: fix VLAN replay after reset (git-fixes).
- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes).
- ice: Interpret .set_channels() input differently (git-fixes).
- ice: reset first in crash dump kernels (git-fixes).
- ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes).
- ice: Shut down VSI with 'link-down-on-close' enabled (git-fixes).
- ice: tc: allow zero flags in parsing tc flower (git-fixes).
- ice: Unbind the workqueue (bsc#1231344).
- ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes).
- idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes).
- idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes).
- idpf: disable local BH when scheduling napi for marker packets (git-fixes).
- idpf: distinguish vports by the dev_port attribute (git-fixes).
- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).
- idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes).
- idpf: fix memleak in vport interrupt configuration (git-fixes).
- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).
- idpf: fix UAFs when destroying the queues (git-fixes).
- idpf: Interpret .set_channels() input differently (git-fixes).
- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).
- igb: extend PTP timestamp adjustments to i211 (git-fixes).
- igb: Fix missing time sync events (git-fixes).
- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).
- igc: Check VLAN EtherType mask (git-fixes).
- igc: Check VLAN TCI mask (git-fixes).
- igc: Fix hicredit calculation (git-fixes).
- igc: Fix missing time sync events (git-fixes).
- igc: Remove temporary workaround (git-fixes).
- igc: Report VLAN EtherType matching back to user (git-fixes).
- igc: Unlock on error in igc_io_resume() (git-fixes).
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).
- iio: adc: ad7606: Fix typo in the driver name (git-fixes).
- iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes).
- iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes).
- iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes).
- iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes).
- iio: light: opt3001: add missing full-scale range value (git-fixes).
- iio: light: veml6030: fix ALS sensor resolution (git-fixes).
- iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes).
- iio: light: veml6030: fix microlux value calculation (git-fixes).
- iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- initramfs: avoid filename buffer overrun (bsc#1232436).
- input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes).
- input: adp5589-keys - fix NULL pointer dereference (git-fixes).
- input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- input: goodix - use the new soc_intel_is_byt() helper (stable-fixes).
- input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes).
- input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes).
- input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes).
- input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes).
- input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes).
- ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813).
- ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813).
- irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes).
- irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes).
- itco_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes).
- ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes).
- ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes).
- ixgbe: fix crash with empty VF macvlan list (git-fixes).
- ixgbe: fix timestamp configuration code (git-fixes).
- jfs: check if leafidx greater than num leaves per dmap tree (git-fixes).
- jfs: Fix sanity check in dbMount (git-fixes).
- jfs: Fix uaf in dbFreeBits (git-fixes).
- jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes).
- jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes).
- kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).
- kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).
- kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes).
- kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes).
- kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).
- kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).
- kabi: Restore exported __arm_smccc_sve_check (git-fixes)
- kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450).
- kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450).
- kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450).
- kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450).
- kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450).
- kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450).
- kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644).
- kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes)
- kexec: fix a memory leak in crash_shrink_memory() (git-fixes).
- kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).
- kvm: Add support for arch compat vm ioctls (git-fixes).
- kvm: arm64: Add missing memory barriers when switching to pKVM's hyp pgd (git-fixes).
- kvm: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes).
- kvm: arm64: Fix AArch32 register narrowing on userspace write (git-fixes).
- kvm: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes).
- kvm: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- kvm: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).
- kvm: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).
- kvm: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- kvm: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes).
- kvm: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes).
- kvm: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- kvm: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes).
- kvm: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes).
- kvm: eventfd: Fix false positive RCU usage warning (git-fixes).
- kvm: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes).
- kvm: Fix lockdep false negative during host resume (git-fixes).
- kvm: fix memoryleak in kvm_init() (git-fixes).
- kvm: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes).
- kvm: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes).
- kvm: PPC: Book3S HV: remove unused varible (bsc#1194869).
- kvm: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes).
- kvm: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes).
- kvm: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631).
- kvm: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231277).
- kvm: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630).
- kvm: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes).
- kvm: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- kvm: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- kvm: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes).
- kvm: Write the per-page 'segment' when clearing (part of) a guest page (git-fixes).
- kvm: x86: Use a stable condition around all VT-d PI paths (git-fixes).
- kvm: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes).
- kvm: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes).
- kvm/arm64: rework guest entry logic (git-fixes).
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).
- Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450).
- media: adv7604: prevent underflow condition when reporting colorspace (git-fixes).
- media: cx24116: prevent overflows on SNR calculus (git-fixes).
- media: dvb_frontend: do not play tricks with underflow values (git-fixes).
- media: dvb-usb-v2: af9035: fix missing unlock (git-fixes).
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes).
- media: dvbdev: prevent the risk of out of memory access (git-fixes).
- media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes).
- media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes).
- media: stb0899_algo: initialize cfr before using it (git-fixes).
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes).
- media: v4l2-tpg: prevent the risk of a division by zero (git-fixes).
- media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes).
- mei: use kvmalloc for read buffer (git-fixes).
- misc: apds990x: Fix missing pm_runtime_disable() (git-fixes).
- mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012).
- mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646).
- modpost: remove incorrect code in do_eisa_entry() (git-fixes).
- module: abort module loading when sysfs setup suffer errors (git-fixes).
- nbd: fix race between timeout and normal completion (bsc#1230918).
- net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).
- net: ena: Fix potential sign extension issue (git-fixes).
- net: ena: Remove ena_select_queue (git-fixes).
- net: ena: Wrong missing IO completions check order (git-fixes).
- net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891).
- net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289).
- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).
- net: relax socket state check at accept time (git-fixes).
- net: socket: suppress unused warning (git-fixes).
- net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes).
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes).
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes).
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes).
- net: usb: usbnet: fix name regression (git-fixes).
- net: usb: usbnet: fix race in probe failure (git-fixes).
- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).
- net/mlx5: Added cond_resched() to crdump collection (git-fixes).
- net/mlx5: Allow 0 for total host VFs (git-fixes).
- net/mlx5: Correctly compare pkt reformat ids (git-fixes).
- net/mlx5: DR, Can't go to uplink vport on RX rule (git-fixes).
- net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes).
- net/mlx5: DR, Use the right GVMI number for drop action (git-fixes).
- net/mlx5: Drain health before unregistering devlink (git-fixes).
- net/mlx5: E-switch, register event handler before arming the event (git-fixes).
- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).
- net/mlx5: Fix fw tracer first block check (git-fixes).
- net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes).
- net/mlx5: fs, lock FTE when checking if active (git-fixes).
- net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes).
- net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes).
- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).
- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).
- net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes).
- net/mlx5: Skip clock update work when device is in error state (git-fixes).
- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).
- net/mlx5: Update the list of the PCI supported devices (git-fixes).
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes).
- net/mlx5: Use recovery timeout on sync reset flow (git-fixes).
- net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes).
- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).
- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).
- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).
- net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes).
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes).
- net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes).
- net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes).
- net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes).
- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes).
- net/mlx5e: Do not offload internal port if filter device is out device (git-fixes).
- net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes).
- net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes).
- net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes).
- net/mlx5e: fix double free of encap_header (git-fixes).
- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).
- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).
- net/mlx5e: Fix pedit endianness (git-fixes).
- net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes).
- net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes).
- net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes).
- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).
- net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes).
- net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes).
- net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes).
- net/mlx5e: Reduce the size of icosq_str (git-fixes).
- net/mlx5e: Take state lock during tx timeout reporter (git-fixes).
- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).
- net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797)
- netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes).
- nfs: Avoid unnecessary rescanning of the per-server delegation list (git-fixes).
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes).
- nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes).
- nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes).
- nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes).
- nfsd: Fix NFSv4's PUTPUBFH operation (git-fixes).
- nfsd: fix refcount leak when file is unhashed after being found (git-fixes).
- nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes).
- nfsd: Mark filecache 'down' if init fails (git-fixes).
- nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes).
- nfsd: return -EINVAL when namelen is 0 (git-fixes).
- nfsv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016).
- nfsv4: Fix clearing of layout segments in layoutreturn (git-fixes).
- nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes).
- nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes).
- ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes).
- ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes).
- nvme-fabrics: fix kernel crash while shutting down controller (git-fixes).
- nvme-multipath: system fails to create generic nvme device (git-fixes).
- nvme-pci: fix freeing of the HMB descriptor table (git-fixes).
- nvme-pci: qdepth 1 quirk (git-fixes).
- nvme-pci: reverse request order in nvme_queue_rqs (git-fixes).
- nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes).
- ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes).
- ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes).
- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes).
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes).
- parport: Proper fix for array out-of-bounds access (git-fixes).
- pci: Add ACS quirk for Qualcomm SA8775P (stable-fixes).
- pci: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes).
- pci: Add T_PVPERL macro (git-fixes).
- pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes).
- pci: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019).
- pci: Fix reset_method_store() memory leak (git-fixes).
- pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes).
- pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes).
- pci: keystone: Set mode as Root Complex for 'ti,keystone-pcie' compatible (git-fixes).
- pci: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes).
- pci: rockchip-ep: Fix address translation unit programming (git-fixes).
- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes).
- platform/x86: dell-sysman: add support for alienware products (stable-fixes).
- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).
- platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes).
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098).
- power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes).
- power: supply: bq27xxx: Fix registers of bq27426 (git-fixes).
- power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes).
- powerpc: Allow clearing and restoring registers independent of saved breakpoint state (bsc#1194869).
- powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869).
- powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869).
- powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869).
- powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869).
- powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869).
- powerpc/boot: Only free if realloc() succeeds (bsc#1194869).
- powerpc/code-patching: Add generic memory patching (bsc#1194869).
- powerpc/code-patching: Consolidate and cache per-cpu patching context (bsc#1194869).
- powerpc/code-patching: Do not call is_vmalloc_or_module_addr() without CONFIG_MODULES (bsc#1194869).
- powerpc/code-patching: Fix error handling in do_patch_instruction() (bsc#1194869).
- powerpc/code-patching: Fix oops with DEBUG_VM enabled (bsc#1194869).
- powerpc/code-patching: Fix unmap_patch_area() error handling (bsc#1194869).
- powerpc/code-patching: introduce patch_instructions() (bsc#1194869).
- powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869).
- powerpc/code-patching: Pre-map patch area (bsc#1194869).
- powerpc/code-patching: Remove #ifdef CONFIG_STRICT_KERNEL_RWX (bsc#1194869).
- powerpc/code-patching: Remove pr_debug()/pr_devel() messages and fix check() (bsc#1194869).
- powerpc/code-patching: Reorganise do_patch_instruction() to ease error handling (bsc#1194869).
- powerpc/code-patching: Speed up page mapping/unmapping (bsc#1194869).
- powerpc/code-patching: Use jump_label to check if poking_init() is done (bsc#1194869).
- powerpc/code-patching: Use temporary mm for Radix MMU (bsc#1194869).
- powerpc/code-patching: Use WARN_ON and fix check in poking_init (bsc#1194869).
- powerpc/ftrace: Use patch_instruction() return directly (bsc#1194869).
- powerpc/imc-pmu: Fix use of mutex in IRQs disabled section (bsc#1054914 git-fixes).
- powerpc/imc-pmu: Use the correct spinlock initializer (bsc#1054914 git-fixes).
- powerpc/inst: Refactor ___get_user_instr() (bsc#1194869).
- powerpc/kexec: Fix return of uninitialized variable (bsc#1194869).
- powerpc/lib: Add __init attribute to eligible functions (bsc#1194869).
- powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869).
- powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869).
- powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869).
- powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869).
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869).
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869).
- powerpc/tlb: Add local flush for page given mm_struct and psize (bsc#1194869).
- powerpc/vdso: augment VDSO32 functions to support 64 bits build (bsc#1194869).
- powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869).
- powerpc/vdso: Merge vdso64 and vdso32 into a single directory (bsc#1194869).
- powerpc/vdso: Rework VDSO32 makefile to add a prefix to object files (bsc#1194869).
- powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869).
- powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729).
- qed: avoid truncating work queue length (git-fixes).
- rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631).
- rcu: Add rcutree.nohz_full_patience_delay to reduce nohz_full (bsc#1231327)
- rdma/bnxt_re: Add a check for memory allocation (git-fixes)
- rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes)
- rdma/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes)
- rdma/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes)
- rdma/bnxt_re: Fix the GID table length (git-fixes)
- rdma/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes)
- rdma/bnxt_re: Fix the usage of control path spin locks (git-fixes)
- rdma/bnxt_re: Return more meaningful error (git-fixes)
- rdma/bnxt_re: synchronize the qp-handle table array (git-fixes)
- rdma/cxgb4: Dump vendor specific QP details (git-fixes)
- rdma/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes)
- rdma/hns: Add clear_hem return value to log (git-fixes)
- rdma/hns: Add mutex_destroy() (git-fixes)
- rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes)
- rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes)
- rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes)
- rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes)
- rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes)
- rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes)
- rdma/hns: Remove unnecessary QP type checks (git-fixes)
- rdma/hns: Remove unused abnormal interrupt of type RAS (git-fixes)
- rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes)
- rdma/hns: Use macro instead of magic number (git-fixes)
- rdma/irdma: Fix misspelling of 'accept*' (git-fixes)
- rdma/mad: Improve handling of timed out WRs of mad agent (git-fixes)
- rdma/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes).
- rdma/mana_ib: use the correct page table index based on hardware page size (git-fixes).
- rdma/mlx5: Move events notifier registration to be after device registration (git-fixes)
- rdma/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes)
- rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).
- rdma/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes)
- rdma/rxe: Fix the qp flush warnings in req (git-fixes)
- rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes)
- rdma/srpt: Make slab cache names unique (git-fixes)
- Removed the duplicated check of static_assert(sizeof(struct work_struct) >= sizeof(struct rcu_head)).
- Removed unnecessary white-space change in kernel/bpf/syscall.c
- Revert 'cgroup: Fix memory leak caused by missing cgroup_bpf_offline' (bsc#1234108).
- Revert 'ixgbe: Manual AN-37 for troublesome link partners for X550 SFI' (git-fixes).
- Revert 'KVM: Prevent module exit until all VMs are freed' (git-fixes).
- Revert 'mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K' (git-fixes).
- Revert 'usb: gadget: composite: fix OS descriptors w_value logic' (git-fixes).
- Revert 'usb: yurex: Replace snprintf() with the safer scnprintf() variant' (stable-fixes).
- Revert PM changes that caused a regression on S4 resume (bsc#1231578).
- rpm/check-for-config-changes: add HAVE_RUST and RUSTC_SUPPORTS_ to IGNORED_CONFIGS_RE They depend on SHADOW_CALL_STACK.
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rpm/release-projects: Add SLFO projects (bsc#1231293).
- rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644)
- rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes).
- rtc: abx80x: Fix WDT bit position of the status register (git-fixes).
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes).
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747).
- s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632).
- sched/isolation: Prevent boot crash when the boot CPU is (bsc#1231327)
- scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes).
- scsi: core: alua: I/O errors for ALUA state transitions (git-fixes).
- scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes).
- scsi: core: Handle devices which return an unusually large VPD page count (git-fixes).
- scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes).
- scsi: fnic: Move flush_work initialization out of if block (bsc#1230055).
- scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes).
- scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes).
- scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes).
- scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241).
- scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757).
- scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241).
- scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241).
- scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241).
- scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241).
- scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241).
- scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757).
- scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757).
- scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241).
- scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241).
- scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241).
- scsi: lpfc: Remove trailing space after \n newline (bsc#1232757).
- scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes).
- scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757).
- scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757).
- scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757).
- scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241).
- scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241).
- scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757).
- scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes).
- scsi: mac_scsi: Refactor polling loop (git-fixes).
- scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes).
- scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes).
- scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes).
- scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes).
- scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes).
- scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes).
- scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes).
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes).
- scsi: smartpqi: correct stream detection (git-fixes).
- scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes).
- scsi: spi: Fix sshdr use (git-fixes).
- scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes).
- security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes).
- selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes).
- selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes).
- selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes).
- selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes).
- selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes).
- serial: 8250: omap: Move pm_runtime_get_sync (git-fixes).
- sfc: Check firmware supports Ethernet PTP filter (git-fixes).
- sfc: do not unregister flow_indr if it was never registered (git-fixes).
- sfc: fix a double-free bug in efx_probe_filters (git-fixes).
- signal: Replace BUG_ON()s (bsc#1234093).
- spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: Fix acpi deferred irq probe (git-fixes).
- spi: lpspi: release requested DMA channels (stable-fixes).
- spi: lpspi: Silence error message upon deferred probe (stable-fixes).
- spi: lpspi: Simplify some error message (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).
- static_call: Do not make __static_call_return0 static (git-fixes).
- sunrpc: clnt.c: Remove misleading comment (git-fixes).
- sunrpc: Fix integer overflow in decode_rc_list() (git-fixes).
- sunrpc: Fixup gss_status tracepoint error output (git-fixes).
- thermal: core: Initialize thermal zones before registering them (git-fixes).
- thermal: intel: int340x: processor: Fix warning during module unload (git-fixes).
- tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes).
- tracing: Consider the NULL character when validating the event length (git-fixes).
- tracing/hwlat: Fix a race during cpuhp processing (git-fixes).
- tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes).
- tun: Fix xdp_rxq_info's queue_index when detaching (git-fixes).
- tun: prevent negative ifindex (git-fixes).
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460).
- Update config files (bsc#1218644). LIVEPATCH_IPA_CLONES=n => LIVEPATCH=n
- Update config files. Enabled IDPF for ARM64 (bsc#1221309)
- uprobe: avoid out-of-bounds memory access of fetching args (git-fixes).
- uprobes: encapsulate preparation of uprobe args buffer (git-fixes).
- usb: appledisplay: close race between probe and completion handler (stable-fixes).
- usb: chaoskey: fail open after removal (git-fixes).
- usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes).
- usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes).
- usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes).
- usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes).
- usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes).
- usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes).
- usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes).
- usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes).
- usb: gadget: core: force synchronous registration (git-fixes).
- usb: misc: cypress_cy7c63: check for short transfer (stable-fixes).
- usb: misc: yurex: fix race between read and write (stable-fixes).
- usb: musb: sunxi: Fix accessing an released usb phy (git-fixes).
- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).
- usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes).
- usb: serial: io_edgeport: fix use after free in debug printk (git-fixes).
- usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes).
- usb: serial: option: add Quectel RG650V (stable-fixes).
- usb: serial: option: add support for Quectel EG916Q-GL (stable-fixes).
- usb: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes).
- usb: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes).
- usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes).
- usb: typec: altmode should keep reference to parent (git-fixes).
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes).
- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes).
- usb: xhci: Fix problem with xhci resume from suspend (stable-fixes).
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes).
- usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes).
- usb: yurex: make waiting on yurex_write interruptible (git-fixes).
- usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes).
- usbip: tools: Fix detach_port() invalid port error path (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes).
- Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450).
- vdpa/mlx5: preserve CVQ vringh index (git-fixes).
- vhost_vdpa: assign irq bypass producer token correctly (git-fixes).
- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes).
- virtio_console: fix misc probe bugs (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- vmxnet3: add command to allow disabling of offloads (bsc#1226498).
- vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498).
- vmxnet3: prepare for version 9 changes (bsc#1226498).
- vmxnet3: update to version 9 (bsc#1226498).
- vsock/virtio: fix packet delivery to tap device (git-fixes).
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes).
- watchdog: rti: of: honor timeout-sec property (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes).
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes).
- wifi: ath10k: Fix memory leak in management tx (git-fixes).
- wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes).
- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).
- wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes).
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes).
- wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes).
- wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).
- wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes).
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes).
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes).
- workqueue: Avoid using isolated cpus' timers on (bsc#1231327)
- workqueue: mark power efficient workqueue as unbounded if (bsc#1231327)
- x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes).
- x86/bugs: Skip RSB fill at VMEXIT (git-fixes).
- x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes).
- x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes).
- x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes).
- x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405).
- x86/kvm: fix is_stale_page_fault() (bsc#1221333).
- xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).
- xhci: Fix incorrect stream context type macro (git-fixes).
- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).
- xhci: Mitigate failed set dequeue pointer commands (git-fixes).
- xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes).
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).
Patchnames
SUSE-2024-4364,SUSE-SLE-Micro-5.5-2024-4364,SUSE-SLE-Module-Basesystem-15-SP5-2024-4364,SUSE-SLE-Module-Development-Tools-15-SP5-2024-4364,SUSE-SLE-Module-Legacy-15-SP5-2024-4364,SUSE-SLE-Module-Live-Patching-15-SP5-2024-4364,SUSE-SLE-Product-HA-15-SP5-2024-4364
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).